Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-61729 (GCVE-0-2025-61729)
Vulnerability from cvelistv5 – Published: 2025-12-02 18:54 – Updated: 2025-12-03 19:37- CWE-400 - Uncontrolled Resource Consumption
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | crypto/x509 |
Affected:
0 , < 1.24.11
(semver)
Affected: 1.25.0 , < 1.25.5 (semver) |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-61729",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-02T21:52:36.341575Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-02T21:52:58.224Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "crypto/x509",
"product": "crypto/x509",
"programRoutines": [
{
"name": "Certificate.VerifyHostname"
},
{
"name": "Certificate.Verify"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.24.11",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.25.5",
"status": "affected",
"version": "1.25.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Philippe Antoine (Catena cyber)"
}
],
"descriptions": [
{
"lang": "en",
"value": "Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-03T19:37:14.903Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/725920"
},
{
"url": "https://go.dev/issue/76445"
},
{
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"title": "Excessive resource consumption when printing error string for host certificate validation in crypto/x509"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-61729",
"datePublished": "2025-12-02T18:54:10.166Z",
"dateReserved": "2025-09-30T15:05:03.605Z",
"dateUpdated": "2025-12-03T19:37:14.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-61729",
"date": "2026-07-01",
"epss": "0.00459",
"percentile": "0.3655"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-61729\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2025-12-02T19:15:51.447\",\"lastModified\":\"2026-06-17T09:50:48.507\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"crypto/x509\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"crypto/x509\",\"programRoutines\":[{\"name\":\"Certificate.VerifyHostname\"},{\"name\":\"Certificate.Verify\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.24.11\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.25.0\",\"lessThan\":\"1.25.5\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2025-12-02T21:52:36.341575Z\",\"id\":\"CVE-2025-61729\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.24.11\",\"matchCriteriaId\":\"F2E6FD2A-A487-4099-B91D-2429F286AC6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.25.0\",\"versionEndExcluding\":\"1.25.5\",\"matchCriteriaId\":\"39C03A37-B94B-46E4-B1C2-A70A870F8E53\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/725920\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/76445\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/8FJoBkPddm4\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2025-4155\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-61729\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-12-02T21:52:36.341575Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-12-02T21:52:53.822Z\"}}], \"cna\": {\"title\": \"Excessive resource consumption when printing error string for host certificate validation in crypto/x509\", \"credits\": [{\"lang\": \"en\", \"value\": \"Philippe Antoine (Catena cyber)\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"crypto/x509\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.24.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.25.0\", \"lessThan\": \"1.25.5\", \"versionType\": \"semver\"}], \"packageName\": \"crypto/x509\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Certificate.VerifyHostname\"}, {\"name\": \"Certificate.Verify\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/725920\"}, {\"url\": \"https://go.dev/issue/76445\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/8FJoBkPddm4\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2025-4155\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2025-12-03T19:37:14.903Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-61729\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-12-03T19:37:14.903Z\", \"dateReserved\": \"2025-09-30T15:05:03.605Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2025-12-02T18:54:10.166Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:1168
Vulnerability from csaf_redhat - Published: 2026-01-26 09:54 - Updated: 2026-07-02 13:10A flaw was found in the crypto/x509 package in the Go standard library. This vulnerability allows a certificate validation bypass via an excluded subdomain constraint in a certificated chain as it does not restrict the usage of wildcard SANs in the leaf certificate.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le | — |
Vendor Fix
fix
|
A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le | — |
Vendor Fix
fix
|
A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le | — |
Vendor Fix
fix
Workaround
|
urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cert-manager Operator for Red Hat OpenShift 1.18.1",
"title": "Topic"
},
{
"category": "general",
"text": "The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities\nand certificates as first-class resource types in the Kubernetes API. This makes it possible to provide\ncertificates-as-a-service to developers working within your Kubernetes cluster.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:1168",
"url": "https://access.redhat.com/errata/RHSA-2026:1168"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61727",
"url": "https://access.redhat.com/security/cve/CVE-2025-61727"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66418",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-66471",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-21441",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html",
"url": "https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_1168.json"
}
],
"title": "Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.18.1",
"tracking": {
"current_release_date": "2026-07-02T13:10:58+00:00",
"generator": {
"date": "2026-07-02T13:10:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:1168",
"initial_release_date": "2026-01-26T09:54:57+00:00",
"revision_history": [
{
"date": "2026-01-26T09:54:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-01-26T09:55:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:10:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "cert-manager operator for Red Hat OpenShift 1.18",
"product": {
"name": "cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cert_manager:1.18::el9"
}
}
}
],
"category": "product_family",
"name": "cert-manager operator for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3A09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419291"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419550"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3A63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707?arch=s390x\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419291"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece?arch=s390x\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419550"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3Af27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2?arch=ppc64le\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419291"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3Adaa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f?arch=ppc64le\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419550"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3Af1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222?arch=arm64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419291"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25?arch=arm64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=1769419550"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64 as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64 as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64 as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64 as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le as a component of cert-manager operator for Red Hat OpenShift 1.18",
"product_id": "cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61727",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2025-12-03T20:01:21.730501+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418677"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/x509 package in the Go standard library. This vulnerability allows a certificate validation bypass via an excluded subdomain constraint in a certificated chain as it does not restrict the usage of wildcard SANs in the leaf certificate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to obtain a leaf certificate with a wildcard SAN (e.g., *.example.com) and the legitimate certificate policy must contain an excluded DNS name constraint (e.g., to prevent issuance for test.example.com), allowing an application using the crypto/x509 package to validate the certificate when it should have been rejected and to be vulnerable to MITM (man-in-the-middle) attacks. Additionally, the attacker does not have full control of what data can be read of modified during the attack. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61727"
},
{
"category": "external",
"summary": "RHBZ#2418677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418677"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61727",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61727"
},
{
"category": "external",
"summary": "https://go.dev/cl/723900",
"url": "https://go.dev/cl/723900"
},
{
"category": "external",
"summary": "https://go.dev/issue/76442",
"url": "https://go.dev/issue/76442"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4175",
"url": "https://pkg.go.dev/vuln/GO-2025-4175"
}
],
"release_date": "2025-12-03T19:37:15.054000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T09:54:57+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1168"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T09:54:57+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1168"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-66418",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-05T17:01:20.277857+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419455"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in urllib3 Python library that could lead to a Denial of Service condition. A remote, malicious server can exploit this flaw by responding to a client request with an HTTP message that uses an excessive number of chained compression algorithms. This unlimited decompression chain causes the client system to consume a virtually unbounded amount of CPU resources and memory. The high resource usage leads to service disruption, making the application unresponsive.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66418"
},
{
"category": "external",
"summary": "RHBZ#2419455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419455"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66418",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66418"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66418"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8",
"url": "https://github.com/urllib3/urllib3/commit/24d7b67eac89f94e11003424bcf0d8f7b72222a8"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-gm62-xv2j-4w53"
}
],
"release_date": "2025-12-05T16:02:15.271000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T09:54:57+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1168"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3: Unbounded decompression chain leads to resource exhaustion"
},
{
"cve": "CVE-2025-66471",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2025-12-05T17:02:21.597728+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419467"
}
],
"notes": [
{
"category": "description",
"text": "A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 Streaming API improperly handles highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "RHBZ#2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7",
"url": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37"
}
],
"release_date": "2025-12-05T16:06:08.531000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T09:54:57+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1168"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 Streaming API improperly handles highly compressed data"
},
{
"cve": "CVE-2026-21441",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2026-01-07T23:01:59.422078+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2427726"
}
],
"notes": [
{
"category": "description",
"text": "urllib3 is an HTTP client library for Python. urllib3\u0027s streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on the HTTP `Content-Encoding` header (e.g., `gzip`, `deflate`, `br`, or `zstd`). When using the streaming API, the library decompresses only the necessary bytes, enabling partial content consumption. Starting in version 1.22 and prior to version 2.6.3, for HTTP redirect responses, the library would read the entire response body to drain the connection and decompress the content unnecessarily. This decompression occurred even before any read methods were called, and configured read limits did not restrict the amount of decompressed data. As a result, there was no safeguard against decompression bombs. A malicious server could exploit this to trigger excessive resource consumption on the client. Applications and libraries are affected when they stream content from untrusted sources by setting `preload_content=False` when they do not disable redirects. Users should upgrade to at least urllib3 v2.6.3, in which the library does not decode content of redirect responses when `preload_content=False`. If upgrading is not immediately possible, disable redirects by setting `redirect=False` for requests to untrusted source.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-21441"
},
{
"category": "external",
"summary": "RHBZ#2427726",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427726"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-21441",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-21441"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-21441"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b",
"url": "https://github.com/urllib3/urllib3/commit/8864ac407bba8607950025e0979c4c69bc7abc7b"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-38jv-5279-wg99"
}
],
"release_date": "2026-01-07T22:09:01.936000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T09:54:57+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1168"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:155383c4664ea3ed18d0f079be720ad68a5de044448a744d7579af7ff0fc7e0a_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3258027c0fb9426c9ee3567f6dc0d02b85cb661c23300b230f5b1400b43bac25_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:3bfbc3e69db31103145500f38f7a1db8e7f0462608e5a425674942606aa03ece_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:daa6b60824e45c6f31efd64b86995e23279fe310dde2f0293c762354f74d969f_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:09c857f0c20721d6b447f5f567182befc1ca6157128225849117a5c830feab23_amd64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:63f4e63f3249b6271041d31fcfbf69c3ad699d319302e8fdb2bff5e1b1418707_s390x",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f1b903ff69100fa938d6bdf4d730d35158eec905351344a246e30ef14c847222_arm64",
"cert-manager operator for Red Hat OpenShift 1.18:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:f27e4637dc8b67703abb24f246ee6d59ee3b3637ce5c47ab63b7935553f419e2_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API)"
}
]
}
RHSA-2026:11749
Vulnerability from csaf_redhat - Published: 2026-04-29 14:31 - Updated: 2026-07-02 13:10A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for buildah is now available for Red Hat Enterprise Linux 9.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images. \n\nSecurity Fix(es):\n\n* golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913)\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:11749",
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_11749.json"
}
],
"title": "Red Hat Security Advisory: buildah security update",
"tracking": {
"current_release_date": "2026-07-02T13:10:58+00:00",
"generator": {
"date": "2026-07-02T13:10:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:11749",
"initial_release_date": "2026-04-29T14:31:52+00:00",
"revision_history": [
{
"date": "2026-04-29T14:31:52+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-29T14:31:52+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:10:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.6::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.src",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.src",
"product_id": "buildah-2:1.39.6-2.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"product": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_id": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.39.6-2.el9_6?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-tests-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.6)",
"product_id": "AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
},
"product_reference": "buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-29T14:31:52+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:11749"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.src",
"AppStream-9.6.0.Z.EUS:buildah-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debuginfo-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-debugsource-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-2:1.39.6-2.el9_6.x86_64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.aarch64",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.ppc64le",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.s390x",
"AppStream-9.6.0.Z.EUS:buildah-tests-debuginfo-2:1.39.6-2.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12028
Vulnerability from csaf_redhat - Published: 2026-04-30 03:03 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for podman is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip (CVE-2025-61728)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12028",
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12028.json"
}
],
"title": "Red Hat Security Advisory: podman security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:02+00:00",
"generator": {
"date": "2026-07-02T13:11:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12028",
"initial_release_date": "2026-04-30T03:03:35+00:00",
"revision_history": [
{
"date": "2026-04-30T03:03:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T03:03:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4:4.9.4-20.el9_4.2.src",
"product": {
"name": "podman-4:4.9.4-20.el9_4.2.src",
"product_id": "podman-4:4.9.4-20.el9_4.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.9.4-20.el9_4.2?arch=src\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product_id": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.9.4-20.el9_4.2?arch=aarch64\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product_id": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.9.4-20.el9_4.2?arch=ppc64le\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-tests-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-tests-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product_id": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.9.4-20.el9_4.2?arch=x86_64\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-remote-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-tests-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-tests-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product_id": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.9.4-20.el9_4.2?arch=s390x\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-4:4.9.4-20.el9_4.2.noarch",
"product": {
"name": "podman-docker-4:4.9.4-20.el9_4.2.noarch",
"product_id": "podman-docker-4:4.9.4-20.el9_4.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@4.9.4-20.el9_4.2?arch=noarch\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4:4.9.4-20.el9_4.2.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src"
},
"product_reference": "podman-4:4.9.4-20.el9_4.2.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-4:4.9.4-20.el9_4.2.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch"
},
"product_reference": "podman-docker-4:4.9.4-20.el9_4.2.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-remote-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64"
},
"product_reference": "podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le"
},
"product_reference": "podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x"
},
"product_reference": "podman-tests-4:4.9.4-20.el9_4.2.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-4:4.9.4-20.el9_4.2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
},
"product_reference": "podman-tests-4:4.9.4-20.el9_4.2.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:03:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:03:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:03:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:03:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:03:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12028"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.src",
"AppStream-9.4.0.Z.EUS:podman-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-debugsource-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-docker-4:4.9.4-20.el9_4.2.noarch",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-plugins-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-remote-debuginfo-4:4.9.4-20.el9_4.2.x86_64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.aarch64",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.ppc64le",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.s390x",
"AppStream-9.4.0.Z.EUS:podman-tests-4:4.9.4-20.el9_4.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12029
Vulnerability from csaf_redhat - Published: 2026-04-30 03:01 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for skopeo is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. \n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12029",
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12029.json"
}
],
"title": "Red Hat Security Advisory: skopeo security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:02+00:00",
"generator": {
"date": "2026-07-02T13:11:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12029",
"initial_release_date": "2026-04-30T03:01:07+00:00",
"revision_history": [
{
"date": "2026-04-30T03:01:07+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T03:01:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.14.5-2.el9_4.4.src",
"product": {
"name": "skopeo-2:1.14.5-2.el9_4.4.src",
"product_id": "skopeo-2:1.14.5-2.el9_4.4.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.14.5-2.el9_4.4?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.14.5-2.el9_4.4.aarch64",
"product": {
"name": "skopeo-2:1.14.5-2.el9_4.4.aarch64",
"product_id": "skopeo-2:1.14.5-2.el9_4.4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.14.5-2.el9_4.4?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"product": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"product_id": "skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.14.5-2.el9_4.4?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"product": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"product_id": "skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.14.5-2.el9_4.4?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"product": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"product_id": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.14.5-2.el9_4.4?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"product": {
"name": "skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"product_id": "skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.14.5-2.el9_4.4?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"product": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"product_id": "skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.14.5-2.el9_4.4?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"product": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"product_id": "skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.14.5-2.el9_4.4?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"product": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"product_id": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.14.5-2.el9_4.4?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.14.5-2.el9_4.4.x86_64",
"product": {
"name": "skopeo-2:1.14.5-2.el9_4.4.x86_64",
"product_id": "skopeo-2:1.14.5-2.el9_4.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.14.5-2.el9_4.4?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.x86_64",
"product": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.x86_64",
"product_id": "skopeo-tests-2:1.14.5-2.el9_4.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.14.5-2.el9_4.4?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"product": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"product_id": "skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.14.5-2.el9_4.4?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"product": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"product_id": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.14.5-2.el9_4.4?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.14.5-2.el9_4.4.s390x",
"product": {
"name": "skopeo-2:1.14.5-2.el9_4.4.s390x",
"product_id": "skopeo-2:1.14.5-2.el9_4.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.14.5-2.el9_4.4?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"product": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"product_id": "skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.14.5-2.el9_4.4?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"product": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"product_id": "skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.14.5-2.el9_4.4?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"product": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"product_id": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.14.5-2.el9_4.4?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.14.5-2.el9_4.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64"
},
"product_reference": "skopeo-2:1.14.5-2.el9_4.4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.14.5-2.el9_4.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le"
},
"product_reference": "skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.14.5-2.el9_4.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x"
},
"product_reference": "skopeo-2:1.14.5-2.el9_4.4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.14.5-2.el9_4.4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src"
},
"product_reference": "skopeo-2:1.14.5-2.el9_4.4.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.14.5-2.el9_4.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64"
},
"product_reference": "skopeo-2:1.14.5-2.el9_4.4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64"
},
"product_reference": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le"
},
"product_reference": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x"
},
"product_reference": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64"
},
"product_reference": "skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64"
},
"product_reference": "skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le"
},
"product_reference": "skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x"
},
"product_reference": "skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64"
},
"product_reference": "skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64"
},
"product_reference": "skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le"
},
"product_reference": "skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x"
},
"product_reference": "skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.14.5-2.el9_4.4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
},
"product_reference": "skopeo-tests-2:1.14.5-2.el9_4.4.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12029"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.src",
"AppStream-9.4.0.Z.EUS:skopeo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debuginfo-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-debugsource-2:1.14.5-2.el9_4.4.x86_64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.aarch64",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.ppc64le",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.s390x",
"AppStream-9.4.0.Z.EUS:skopeo-tests-2:1.14.5-2.el9_4.4.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12030
Vulnerability from csaf_redhat - Published: 2026-04-30 03:33 - Updated: 2026-07-02 13:11A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for buildah is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images. \n\nSecurity Fix(es):\n\n* golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913)\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12030",
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12030.json"
}
],
"title": "Red Hat Security Advisory: buildah security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:03+00:00",
"generator": {
"date": "2026-07-02T13:11:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12030",
"initial_release_date": "2026-04-30T03:33:47+00:00",
"revision_history": [
{
"date": "2026-04-30T03:33:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T03:33:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.33.13-3.el9_4.1.src",
"product": {
"name": "buildah-2:1.33.13-3.el9_4.1.src",
"product_id": "buildah-2:1.33.13-3.el9_4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.13-3.el9_4.1?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.33.13-3.el9_4.1.aarch64",
"product": {
"name": "buildah-2:1.33.13-3.el9_4.1.aarch64",
"product_id": "buildah-2:1.33.13-3.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.13-3.el9_4.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"product": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"product_id": "buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.13-3.el9_4.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"product": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"product_id": "buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.13-3.el9_4.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"product": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"product_id": "buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.13-3.el9_4.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"product_id": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.13-3.el9_4.1?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.33.13-3.el9_4.1.ppc64le",
"product": {
"name": "buildah-2:1.33.13-3.el9_4.1.ppc64le",
"product_id": "buildah-2:1.33.13-3.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.13-3.el9_4.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"product": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"product_id": "buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.13-3.el9_4.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"product": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"product_id": "buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.13-3.el9_4.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"product": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"product_id": "buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.13-3.el9_4.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"product_id": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.13-3.el9_4.1?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.33.13-3.el9_4.1.x86_64",
"product": {
"name": "buildah-2:1.33.13-3.el9_4.1.x86_64",
"product_id": "buildah-2:1.33.13-3.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.13-3.el9_4.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"product": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"product_id": "buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.13-3.el9_4.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"product": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"product_id": "buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.13-3.el9_4.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"product": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"product_id": "buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.13-3.el9_4.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"product_id": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.13-3.el9_4.1?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-2:1.33.13-3.el9_4.1.s390x",
"product": {
"name": "buildah-2:1.33.13-3.el9_4.1.s390x",
"product_id": "buildah-2:1.33.13-3.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.33.13-3.el9_4.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"product": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"product_id": "buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.33.13-3.el9_4.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"product": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"product_id": "buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.33.13-3.el9_4.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"product": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"product_id": "buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.33.13-3.el9_4.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"product": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"product_id": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.33.13-3.el9_4.1?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.13-3.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64"
},
"product_reference": "buildah-2:1.33.13-3.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.13-3.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le"
},
"product_reference": "buildah-2:1.33.13-3.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.13-3.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x"
},
"product_reference": "buildah-2:1.33.13-3.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.13-3.el9_4.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src"
},
"product_reference": "buildah-2:1.33.13-3.el9_4.1.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-2:1.33.13-3.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64"
},
"product_reference": "buildah-2:1.33.13-3.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64"
},
"product_reference": "buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le"
},
"product_reference": "buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x"
},
"product_reference": "buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
},
"product_reference": "buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64"
},
"product_reference": "buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le"
},
"product_reference": "buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x"
},
"product_reference": "buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64"
},
"product_reference": "buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64"
},
"product_reference": "buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le"
},
"product_reference": "buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x"
},
"product_reference": "buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-2:1.33.13-3.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64"
},
"product_reference": "buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
},
"product_reference": "buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:47+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12030"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:buildah-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debuginfo-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-debugsource-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-2:1.33.13-3.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:buildah-tests-debuginfo-2:1.33.13-3.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12031
Vulnerability from csaf_redhat - Published: 2026-04-30 03:29 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for runc is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12031",
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12031.json"
}
],
"title": "Red Hat Security Advisory: runc security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:04+00:00",
"generator": {
"date": "2026-07-02T13:11:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12031",
"initial_release_date": "2026-04-30T03:29:55+00:00",
"revision_history": [
{
"date": "2026-04-30T03:29:55+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T03:29:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.el9_4.1.src",
"product": {
"name": "runc-4:1.2.9-1.el9_4.1.src",
"product_id": "runc-4:1.2.9-1.el9_4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.el9_4.1?arch=src\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.el9_4.1.aarch64",
"product": {
"name": "runc-4:1.2.9-1.el9_4.1.aarch64",
"product_id": "runc-4:1.2.9-1.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.el9_4.1?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"product": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"product_id": "runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.el9_4.1?arch=aarch64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"product_id": "runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.el9_4.1?arch=aarch64\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.el9_4.1.ppc64le",
"product": {
"name": "runc-4:1.2.9-1.el9_4.1.ppc64le",
"product_id": "runc-4:1.2.9-1.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.el9_4.1?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"product": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"product_id": "runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.el9_4.1?arch=ppc64le\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"product_id": "runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.el9_4.1?arch=ppc64le\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.el9_4.1.x86_64",
"product": {
"name": "runc-4:1.2.9-1.el9_4.1.x86_64",
"product_id": "runc-4:1.2.9-1.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.el9_4.1?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.x86_64",
"product": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.x86_64",
"product_id": "runc-debugsource-4:1.2.9-1.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.el9_4.1?arch=x86_64\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"product_id": "runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.el9_4.1?arch=x86_64\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "runc-4:1.2.9-1.el9_4.1.s390x",
"product": {
"name": "runc-4:1.2.9-1.el9_4.1.s390x",
"product_id": "runc-4:1.2.9-1.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc@1.2.9-1.el9_4.1?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"product": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"product_id": "runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debugsource@1.2.9-1.el9_4.1?arch=s390x\u0026epoch=4"
}
}
},
{
"category": "product_version",
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"product": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"product_id": "runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/runc-debuginfo@1.2.9-1.el9_4.1?arch=s390x\u0026epoch=4"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64"
},
"product_reference": "runc-4:1.2.9-1.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le"
},
"product_reference": "runc-4:1.2.9-1.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x"
},
"product_reference": "runc-4:1.2.9-1.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.el9_4.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src"
},
"product_reference": "runc-4:1.2.9-1.el9_4.1.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-4:1.2.9-1.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64"
},
"product_reference": "runc-4:1.2.9-1.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64"
},
"product_reference": "runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64"
},
"product_reference": "runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le"
},
"product_reference": "runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x"
},
"product_reference": "runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "runc-debugsource-4:1.2.9-1.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
},
"product_reference": "runc-debugsource-4:1.2.9-1.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:29:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:29:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:29:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:29:55+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12031"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:runc-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debuginfo-4:1.2.9-1.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:runc-debugsource-4:1.2.9-1.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12032
Vulnerability from csaf_redhat - Published: 2026-04-30 03:33 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Container Network Interface (CNI) project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources when the container is deleted. \n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12032",
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12032.json"
}
],
"title": "Red Hat Security Advisory: containernetworking-plugins security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:04+00:00",
"generator": {
"date": "2026-07-02T13:11:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12032",
"initial_release_date": "2026-04-30T03:33:54+00:00",
"revision_history": [
{
"date": "2026-04-30T03:33:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T03:33:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"product": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"product_id": "containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.4.0-6.el9_4.3?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"product": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"product_id": "containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.4.0-6.el9_4.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"product_id": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.4.0-6.el9_4.3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"product_id": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.4.0-6.el9_4.3?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"product": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"product_id": "containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.4.0-6.el9_4.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"product_id": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.4.0-6.el9_4.3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"product_id": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.4.0-6.el9_4.3?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"product": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"product_id": "containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.4.0-6.el9_4.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64",
"product_id": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.4.0-6.el9_4.3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"product_id": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.4.0-6.el9_4.3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"product": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"product_id": "containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.4.0-6.el9_4.3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"product_id": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.4.0-6.el9_4.3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"product_id": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.4.0-6.el9_4.3?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64"
},
"product_reference": "containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le"
},
"product_reference": "containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x"
},
"product_reference": "containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src"
},
"product_reference": "containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64"
},
"product_reference": "containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:33:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12032"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debuginfo-1:1.4.0-6.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:containernetworking-plugins-debugsource-1:1.4.0-6.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12033
Vulnerability from csaf_redhat - Published: 2026-04-30 03:35 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor and is used to provide networking for podman-machine virtual machines. Compared to libslirp, gvisor-tap-vsock brings a configurable DNS server and dynamic port forwarding.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12033",
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12033.json"
}
],
"title": "Red Hat Security Advisory: gvisor-tap-vsock security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:04+00:00",
"generator": {
"date": "2026-07-02T13:11:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12033",
"initial_release_date": "2026-04-30T03:35:28+00:00",
"revision_history": [
{
"date": "2026-04-30T03:35:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-30T03:35:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"product": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"product_id": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.7.3-5.el9_4.3?arch=src\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"product": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"product_id": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.7.3-5.el9_4.3?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"product_id": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.7.3-5.el9_4.3?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.7.3-5.el9_4.3?arch=aarch64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"product": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"product_id": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.7.3-5.el9_4.3?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"product_id": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.7.3-5.el9_4.3?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.7.3-5.el9_4.3?arch=ppc64le\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"product": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"product_id": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.7.3-5.el9_4.3?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64",
"product_id": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.7.3-5.el9_4.3?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.7.3-5.el9_4.3?arch=x86_64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"product": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"product_id": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.7.3-5.el9_4.3?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"product_id": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.7.3-5.el9_4.3?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.7.3-5.el9_4.3?arch=s390x\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64"
},
"product_reference": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le"
},
"product_reference": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x"
},
"product_reference": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src"
},
"product_reference": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64"
},
"product_reference": "gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:35:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:35:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:35:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T03:35:28+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12033"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.src",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debuginfo-6:0.7.3-5.el9_4.3.x86_64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.aarch64",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.ppc64le",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.s390x",
"AppStream-9.4.0.Z.EUS:gvisor-tap-vsock-debugsource-6:0.7.3-5.el9_4.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
}
]
}
RHSA-2026:12279
Vulnerability from csaf_redhat - Published: 2026-04-30 11:36 - Updated: 2026-07-02 13:11A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
Workaround
|
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
Workaround
|
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Data Foundation 4.19.15 security, enhancement \u0026 bug fix update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation 4.19.15 security, enhancement \u0026 bug fix update\n\nFIXED BUGS:\n==========\nDFBUGS-6345: RHODF 4.19.15\nDFBUGS-5942: Backport to odf-4.19.z [External Mode]: noobaa-default-backing-store is in creating state due to \"CheckExternalConnection Status=UNKNOWN_FAILURE Error=SELF_SIGNED_CERT_IN_CHAIN\"\nDFBUGS-5819: [Backport to odf-4.19.z] [IBM_Support][Fusion HCI]\"storageclient-xxxxx-status-reporter job\" doesn\u0027t inherits the tolerations defined in \"ocs-client-operator-controller-manager\" deployment\nDFBUGS-5800: [Backport to odf-4.19.z] must-gather causes default RGW pools to be created and PGs to be stuck at 1 \nDFBUGS-4440: [4.19][ROSA HCP][UI]Bad gateway on Storage System creation wizard\n\nCVEs:\n==========\nCVE-2026-34986\nCVE-2025-61726\nCVE-2026-33186\nCVE-2025-61729\nCVE-2026-4800\nCVE-2025-58183\nCVE-2026-33036",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:12279",
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58183",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_12279.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19.15 security, enhancement \u0026 bug fix update",
"tracking": {
"current_release_date": "2026-07-02T13:11:08+00:00",
"generator": {
"date": "2026-07-02T13:11:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:12279",
"initial_release_date": "2026-04-30T11:36:26+00:00",
"revision_history": [
{
"date": "2026-04-30T11:36:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-04T14:12:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Openshift Data Foundation 4.19",
"product": {
"name": "Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.19::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Openshift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079019"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776706744"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256%3Add40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710227"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3A5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707205"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707231"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"product_id": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256%3A05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710229"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3A0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707301"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256%3Abc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710244"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3A063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079295"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"product_id": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256%3A995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710257"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707418"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"product_id": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cloudnative-pg-rhel9-operator@sha256%3A326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707377"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3A94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707947"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707456"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3Aba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256%3A996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710246"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3Af069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"product_id": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256%3A18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710272"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3Aa0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3A92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707569"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256%3Aa0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710267"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3Acbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707724"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707763"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"product_id": "registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256%3Ab1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710261"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"product_id": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256%3A88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710267"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"product_id": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256%3A941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710276"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"product_id": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256%3Ade97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710288"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3Af2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707771"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"product_id": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256%3A69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710296"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079774"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"product_id": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256%3A031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776710298"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079019"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776706744"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3A9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707205"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3Ade4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707231"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3A08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707301"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3Ab7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079295"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707418"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cloudnative-pg-rhel9-operator@sha256%3A26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707377"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3A7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707947"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707456"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3A58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3A09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707569"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3Ae047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707724"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3Aa928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707763"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707771"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079774"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079019"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776706744"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3A43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707205"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707231"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3Afb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707301"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3A0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079295"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3Ae6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3Ab24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707418"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"product_id": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cloudnative-pg-rhel9-operator@sha256%3Ac9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707377"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3Ae58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707947"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707456"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3Afbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3A3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3A04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707569"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3Acd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707724"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707763"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707771"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3Af101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079774"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776706744"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707231"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3Ad26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707760"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707301"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3A69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079295"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707362"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707418"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"product_id": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cloudnative-pg-rhel9-operator@sha256%3A939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707377"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3A3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707947"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707456"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3Ade3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707526"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3Af7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707569"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3A285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707724"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707763"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776707771"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1776079774"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64 as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x as a component of Red Hat Openshift Data Foundation 4.19",
"product_id": "Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.19"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-30T11:36:26+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.19/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:12279"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:dd40accadd49771cd27b7f0de2c90a9b21e100a43369efe0393183cc434781cf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:225ba1747733c974fd4a3c9b49f657b180b83486d1c35a473e8e5a2b96abcc53_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:8c6cbc8235011fce3c988e7fbeb908f8eeefc19fc44cad33595af89302c6f95c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:93323b16517b9b7b24c952fa07207ff854738b8b290fa63db21ca79399c4ab2a_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9707855db691fb72815baf3758cff648bda0b33a11b155f30ba04c950f776005_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:08d3d6db14a36f5338a958bc9ee5914f912f5980f20f8dc6775ad4cf1905aaaf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:2b471f005eae461ce14a531275cdcb2ace42e90ff1615a5541181b79a657c34f_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/cephcsi-rhel9@sha256:72054a55200a33d05d6c52ae2893edac550d1970cc4395e144f67715eed0f4a8_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:43490d8f164f31ea025772d00d3dca379d4b770c7aace1a9b4066d118701cbc0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:5712877643261f69dc38438d0194e4fc299ad4efc98a89320b06066a605d5ed0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-core-rhel9@sha256:9f71b8ac38198f832d1687d6de10078f43c4fb189a25357a5a1f1148c1a467ab_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-operator-bundle@sha256:05d8d117013db65743cfae129da519b604a87b4d91546116b13a6639d191d490_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:46ea3cd9a992d1bb984a247365f5a866640edf78cca9a853ed241118393bc7e1_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:51c2c549d33debec7c0b66b4c0b091bab1ea58559480e329759a1373b6d2dfd2_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:987982d5cbe11a564ae2bb6c38a4aae2ae351bdefa7e0280393ba2be011984fc_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:de4360c38bde7baf0095e8d6b4e98d382d0d746bf497577dc4221efa15b602d4_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:08aede339f0597f4327e8e72a4af707c960c7a41e2e78426163241dc33fb239e_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:0db0a9d4571af3dd647818bfa011d37e06ae721f3a7ba6306b1d5f47d740f17d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:d26ac4eba416e06b01f72ddd90e7fc0148653d0ceedc67beefafafe522931957_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:fb585faf2e75939b157377bfa50eabf0f649492a5461ad79cb2e7c6fb35f700d_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:bc5267ef2a3e4fa2b6c8dd2043608399b307a292c6860ab99d750c478d409e0e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:12cb5269ac62949e96efbdae61dc9551a5e1574177b6c9383879b6b290b99ced_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:22ff45bb3a0d0d11d3eb4c9255eacd2b5517925370374968bc5edf4012baf72b_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:824029e5f4fcd750292bac55cee15f17bd002a42e6d36c108122d50eeeaea776_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:9ff944fe6ba891448ed4558f33248d66250565c67fe45d4abc12964c1016a1f9_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:063d240d7ed66b531da1fdbc2e1978701c161b7fe90c6e5abf9d8064789d0f08_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:0a880a5bd07e0272a59254a92c1c98a15e076664e35f7f0d5f6e800102425898_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:69d362c35147c545d73437b7be9e9300a4812e6f30371782084da31f4c13b723_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:b7f9658075cdc1013d83a00e514372e1f5faa76e9bec9c431c636e0255c262ff_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-operator-bundle@sha256:995671309308b3d68ce4ad0991015a6e74c8cdd31b1305481db4dfcec6dab9d0_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:295af25d80fc34c97061f87664b3e422df5b8de904e5f446a3017007c39763fb_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:95c2c3dee3ffcb7fc26a41489ce49033fe311cfad8535ccbe03b745284af3255_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9d331d5bb3d5362088b9fe84c93b2004013cebb0549b94bed87fd01bc0e04d9d_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:e6849ce5b4c0b526067e0c5ae90da85efc9abff1d76161c170aa9cd4e9f2a8e7_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:0c21d44342106f7b550717d6b3c75c165f6d9142edbbd0764c9aa78632237595_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:621af15ba4c152caa532594ea181ca21a1adbd29f077e1881be606c7b2f09520_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:95ad9d6989cffdd7f6b4f48920ba21e0dfee8b21f14c6f85af428b18345ced83_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cli-rhel9@sha256:b24124930a6d6ba80a5d8c2159e0dde4162efaa9f91a3a2493dee723141204eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:26480cf68b1d61858d092767c2a1461b370e93a7546a2ed7828693e0be6d3061_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:326a82e8e21354b7fb270b2ca4bb8af8274dc009ce49636a3432afda2b5e3fbf_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:939518fd552b01edf2a93fd24a0a8ed9717b93a8124811d8c8f24b2964586086_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cloudnative-pg-rhel9-operator@sha256:c9f1b747f000b07c12b7e25e2eba3d44cee505a8165a0a207bfa7ae49ef28ca5_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:3425d6f585c5199e9f243fa29df000e7d6a7da37c8940b2ef952107ae58840e3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:7acd288500c571c5c46f576830e6fa837e7ffaf81b61ad93740c0dadec4f6499_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:94129b5fc46fe10392df44260c6235e301dbdd5b33f2979c0e99cb44c6951671_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-console-rhel9@sha256:e58fd4600d19b3d543eca8726617a9bf55a783198264e5e6fdce2f7860674ccf_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:0193cfee41ea76601c157f0535e26d16a6bb544317ffe229df8714c1d4ab23eb_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:59ebde64bbf97632c07ce685ca1b16fa7957e2dc322c672b589559a8f0e0292f_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:8180db80a46c005759a086990fb0504a7847df0a13578ebe30d84d44d5b79db5_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:92233282fed887956be7ad5a1a6a56530ccbb4f201e6b9225b93950ed1bdfe7c_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:996ab5b3c8a4331ae29a115df64470321463a4c86b9eebdf40ef24e4caad469d_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:7b698d1512bad4e32654b886a2c630710f58a3903b3cc299f24cba5d3e8a3dda_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:9a88d5f7fce059b21ee3438734660aac19c739d64c655a7e606ab984f13a7dd7_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:ba0fd00720f301a9a3cd59b3ce8dba985b179b0f4e7d0ba37683cdc5ab8428e4_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:fbeba6f61f270d2099396639221c00406e2e5e3d2f829df93332a61075cb3958_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:3076b14ae96af40ce767a4c6047e4826a05d4935d390c45518cea399d8f6c868_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:58fa7a633a3ac07d28b2b457c84b41d1814b4870edef1dec67fabe15fa47df94_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:de3191b8527328bcda3ee6ad085fd4a8388e8219e4a57c7871f1f1bd66d9412b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:f069b602da858b4978a2cd1d5ae046008f551d3f865c1f4e4c7c33a01b464f01_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:18176d66e822bc81d4366a17ba1ec4344f355596547632a81e451c44b3241c21_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:31ea428ac1bac32e28d1de063c2b5669234274759b1650641194f2f62b9d1232_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:7303e538f6b51b82b543f618f81927476af45de9612776560e22f6084b8eb8c1_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:884e1c9ebae0c55609bc5487edb207eabc675c9c40b0b51bb5bd183d85b002dc_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:a0882ec5239e3c410bd8cde9fed6f7a40bbcdd99539b0eadc0802ed9de8b3660_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:a0e7589f2bed6063a8b766a16bd92155f0caa45215eeb4655d6ca39fb1186b0f_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:04f46d7eb908121baf4d3e3433dfa14fffafb42328ee17faf3daa6ace96adf78_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:09b01165df8f630afbdacd80227bca74304f6a4e03c1c64027e19a2eec19192f_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:92fdad1c8bb6db920c10d19b455143d7688dfea804770cff6084e47460975ca7_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f7ec5e84796aee5b4a916f803af398ff0e9e0a056580d867af12ae97b9201d75_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:285fb3527b09d73a0a1d6cabde410e684f4cf47f585e142d6665cde23e51ce0b_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cbfc80f2da96e4db174139eb375715aba24c55fe50ae7a89d3e2227ab375798e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:cd4d15d104f04cd8bc836a17ede3a4c1026aab5ace113cb04225c5397da03ff9_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:e047e1d86926df0580d68a082fb647af23ed7831b82ef3d5902468b1fba57a19_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-operator-bundle@sha256:b1cd4edb9cd4678c5493ed3599608c7b892b539a89321216425e5a0dc002e43e_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:88f514c3fd6e66efadaa426ecbdc175284f295aa5eb29d68982033421c799fa6_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:1b5d23d6f9904f1f88e241a9d6f4eb3113bd826fae5fadb6942b01e7a76a5f1c_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:73129534b3c1f8063e4bbe60409dd97c270b426d420d5ed94e4ee629079c57a0_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:799a11fe848efd69ad3e570088dc00a534f9528d1eb5f7fe6e32cc838ddec577_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odf-rhel9-operator@sha256:a928ff76754607038db7c8ac8b542d33a6350dde28d32b35cce31a3403e76ac7_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:941c038bf9ec376197cde64140d242725744a57d11af9f3fb84e9f03b92e98bd_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:de97e806d2d9f4486dcda7a855226a2aaa12221c7cc49f9a9f738dd5701c2fa1_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:69305b774c8fc9811aa05e31ec63285030d468991cc4313aae1ddac597e95e89_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:03cc45bf056f0015d73c48d88fd9e9c23f9abed069b1eeb6597e15a8f7d69eef_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:6dcc36a3e744e83ebb9a7791e32691caae3014d456a61e9f9b6e2269885930f4_s390x",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:91efacbad0b371266a5925486e222978adb25d02557e1c4bb36c5b6aeb7d4fa3_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/odr-rhel9-operator@sha256:f2da1b92acf41f57c6a54aa5c68f23fe261f3655c4b4eeb9d246f514c9f97245_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:031825475b50ded9bc47147dd76e9bdd169c9df1379b77ef150e808e2c005c56_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:1b5f8f7f0cc26e4ef67c1185071365397fa05fd4ce14d6b58c921d23459385e3_ppc64le",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:23a1eeb9c5ec4036cdf6b80ef674803f1bf9c3b8c00ed0bd32a9bce13dde7291_amd64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8446d8f3208207146c61d234b305b7133333930e48a11d0af30710ba8c2ca051_arm64",
"Red Hat Openshift Data Foundation 4.19:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:f101f7f148ff73d6cedc40551629108ed98b470ec0e428bc957bd0b25c6619a2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:1249
Vulnerability from csaf_redhat - Published: 2026-01-26 19:58 - Updated: 2026-07-02 13:11A flaw was found in the python protobuf package which can result in a denial of service. Applications that parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages, or a series of SGROUP tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashing the application that integrates the package with a RecursionError.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
A request smuggling flaw was found in the aiohttp python library. If a pure Python version of aiohttp is installed, without the usual C extensions, for example, or if AIOHTTP_NO_EXTENSIONS is enabled, an attacker can execute a request smuggling attack to bypass certain firewalls or proxy protections.
CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64 | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64 | — | ||
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64 | — | ||
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch | — |
A flaw was found in Django. This vulnerability allows a remote attacker to cause a potential denial-of-service (DoS) attack triggering Central Processing Unit (CPU) and memory exhaustion via specially crafted Extensible Markup Language (XML) input processed by the XML Deserializer.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
A decompression based denial of service flaw has been discovered in the AIOHTTP python library. Library versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could exhaust the host's memory.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Ansible Automation Platform 2.6\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* automation-controller: AIOHTTP HTTP Request/Response Smuggling (CVE-2025-53643)\n* automation-controller: AIOHTTP\u0027s HTTP Parser auto_decompress feature is vulnerable to zip bomb (CVE-2025-69223)\n* automation-controller: Django: Algorithmic complexity in XML Deserializer leads to denial of service (CVE-2025-64460)\n* automation-controller: urllib3 Streaming API improperly handles highly compressed data (CVE-2025-66471)\n* python3.11-django: Algorithmic complexity in XML Deserializer leads to denial of service (CVE-2025-64460)\n* python3.11-protobuf: Unbounded recursion in Python Protobuf (CVE-2025-4565)\n* python3.11-urllib3: urllib3 Streaming API improperly handles highly compressed data (CVE-2025-66471)\n* receptor: Excessive resource consumption when printing error string for host certificate validation in crypto/x509 (CVE-2025-61729)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nUpdates and fixes included:\n\nAutomation Platform\n* Reduced cognitive complexity in _sync_user_superuser_flag (AAP-62771)\n* The FEATURE_GATEWAY_IPV6_USAGE_ENABLED feature flag has been removed and IPv6 support is enabled by default (AAP-61805)\n* Fixed an issue preventing gateway from working in a pure IPv4 single stack environment when IPv6 is enabled (AAP-60478)\n* Added dedicated aap.auth_audit logger with specialized formatters and handlers (AAP-60364)\n* Introduced new logs for authentication events (AAP-60364)\n* automation-gateway has been updated to 2.6.20260121\n* python3.11-django-ansible-base has been updated to 2.6.20260121\n\nAutomation Platform UI\n* Page titles now reflect the current page content (AAP-61754)\n* Allow full search in resource dropdowns (AAP-57712)\n* Fixed an issue that occasionally showed a bad request status when navigating between different pages (AAP-56701)\n* Fixed filtering by name in Collections page (AAP-56529)\n* Fixed clear/browse button behavior in Client Certificate and Client Key (AAP-55296)\n* Fixed an issue where a Rulebook Activation in workers offline status could not be disabled or deleted (AAP-52714)\n* Fixed an issue where workflow job templates node credentials are missing after save for job template nodes that have a default credential that is promptable (AAP-52638)\n* Fixed an issue where the gateway UI reset the order of an auth mapping when the entity was edited by the user (AAP-52258)\n* Improves labels and descriptions for Authenticator Mappings details (AAP-51295)\n* Resolved an issue where controller unavailability rendered the entire AAP UI inaccessible (AAP-50106)\n* Fixed descriptions for Remotes and Remote Registries (AAP-49838)\n* Survey textarea \"Default Answer\" field now properly accepts newlines when pressing Enter (AAP-49820)\n* Fixed review page on Workflow Approval Nodes (AAP-49433)\n* Fixed editing of \"Days of data to keep\" value in management job schedules (AAP-48972)\n* Editing and saving credentials that use external credential lookup plugins (such as CyberArk) no longer fails with an error message (AAP-44813)\n* Fixed an issue where the SAML Service Provider extra configuration data field could not be cleared in the UI, as it would automatically reset to the default value (AAP-43661)\n* Resolved an issue where ad-hoc commands failed with a \"Bad Request\" error when using credentials configured with \"Prompt on launch\" for password fields (AAP-43603)\n* Updated modal warning message and layout when enabling a copied Rulebook Activation (AAP-42574)\n* automation-platform-ui has been updated to 2.6.5\n\nAutomation controller\n* Added runtime feature flags (AAP-62686)\n* automation-controller has been updated to 4.7.8\n* receptor has been updated to 1.6.3\n\nAutomation hub\n* Autocomplete attribute added to the Automation Hub API password field (AAP-59910)\n* automation-hub has been updated to 4.11.5\n* python3.11-galaxy-importer has been updated to 0.4.37\n* python3.11-galaxy-ng has been updated to 4.11.5\n* python3.11-pulpcore has been updated to 3.49.49\n\nEvent-Driven Ansible\n* Added x-ai-description field to the activation PATCH method (AAP-61969)\n* automation-eda-controller has been updated to 1.2.4\n\nContainer-based Ansible Automation Platform\n* Added lTLS support to lightspeed chatbot service (AAP-60900)\n* system-prompt was optimized for granite and openai models (AAP-60898)\n* Added ipv6 support (AAP-60532)\n* Fixed an issue where the pcp uninstall step was failing for the Ansible MCP nodes (AAP-60517)\n* containerized installer setup has been updated to 2.6-5\n\nRPM-based Ansible Automation Platform\n* ansible-automation-platform-installer and installer setup have been updated to 2.6-4\n\nAdditional changes\n* ansible-core has been updated to 2.16.15\n* ansible-dev-tools has been updated to 26.1.0\n* ansible-lint has been updated to 26.1.0\n* ansible-navigator has been updated to 26.1.1\n* python3.11-botocore has been updated to 1.34.162\n* python3.11-django has been updated to 4.2.27\n* python3.11-protobuf has been updated to 4.25.8\n* python3.11-requests has been updated to 2.31.0\n* python3.11-urllib3 has been updated to 2.6.3",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:1249",
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6/html/release_notes/patch_releases",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6/html/release_notes/patch_releases"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6#Upgrade",
"url": "https://docs.redhat.com/en/documentation/red_hat_ansible_automation_platform/2.6#Upgrade"
},
{
"category": "external",
"summary": "2373016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373016"
},
{
"category": "external",
"summary": "2380000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380000"
},
{
"category": "external",
"summary": "2418366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418366"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "2427456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427456"
},
{
"category": "external",
"summary": "AAP-60364",
"url": "https://issues.redhat.com/browse/AAP-60364"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_1249.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.6 Product Security and Bug Fix Update",
"tracking": {
"current_release_date": "2026-07-02T13:11:13+00:00",
"generator": {
"date": "2026-07-02T13:11:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:1249",
"initial_release_date": "2026-01-26T19:58:10+00:00",
"revision_history": [
{
"date": "2026-01-26T19:58:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-01-26T19:58:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.6::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_developer:2.6::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_inside:2.6::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product": {
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.6::el10"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product": {
"name": "Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_developer:2.6::el10"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ansible Automation Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-django-0:4.2.27-2.el9ap.src",
"product": {
"name": "python3.11-django-0:4.2.27-2.el9ap.src",
"product_id": "python3.11-django-0:4.2.27-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django@4.2.27-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"product": {
"name": "python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"product_id": "python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulpcore@3.49.49-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.src",
"product": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.src",
"product_id": "python3.11-protobuf-0:4.25.8-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf@4.25.8-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"product": {
"name": "ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"product_id": "ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-automation-platform-installer@2.6-4.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-navigator-0:26.1.1-2.el9ap.src",
"product": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.src",
"product_id": "ansible-navigator-0:26.1.1-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-navigator@26.1.1-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-hub-0:4.11.5-1.el9ap.src",
"product": {
"name": "automation-hub-0:4.11.5-1.el9ap.src",
"product_id": "automation-hub-0:4.11.5-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-hub@4.11.5-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.src",
"product": {
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.src",
"product_id": "ansible-dev-tools-0:26.1.0-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-dev-tools@26.1.0-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-lint-0:26.1.0-2.el9ap.src",
"product": {
"name": "ansible-lint-0:26.1.0-2.el9ap.src",
"product_id": "ansible-lint-0:26.1.0-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-lint@26.1.0-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-gateway-0:2.6.20260121-1.el9ap.src",
"product": {
"name": "automation-gateway-0:2.6.20260121-1.el9ap.src",
"product_id": "automation-gateway-0:2.6.20260121-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-gateway@2.6.20260121-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.2.4-1.el9ap.src",
"product": {
"name": "automation-eda-controller-0:1.2.4-1.el9ap.src",
"product_id": "automation-eda-controller-0:1.2.4-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.2.4-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"product": {
"name": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"product_id": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base@2.6.20260121-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-platform-ui-0:2.6.5-1.el9ap.src",
"product": {
"name": "automation-platform-ui-0:2.6.5-1.el9ap.src",
"product_id": "automation-platform-ui-0:2.6.5-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-platform-ui@2.6.5-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"product": {
"name": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"product_id": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-galaxy-ng@4.11.5-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el9ap.src",
"product": {
"name": "receptor-0:1.6.3-2.el9ap.src",
"product_id": "receptor-0:1.6.3-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-controller-0:4.7.8-1.el9ap.src",
"product": {
"name": "automation-controller-0:4.7.8-1.el9ap.src",
"product_id": "automation-controller-0:4.7.8-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller@4.7.8-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-botocore-0:1.34.162-1.el9ap.src",
"product": {
"name": "python3.11-botocore-0:1.34.162-1.el9ap.src",
"product_id": "python3.11-botocore-0:1.34.162-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-botocore@1.34.162-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-requests-0:2.31.0-3.el9ap.src",
"product": {
"name": "python3.11-requests-0:2.31.0-3.el9ap.src",
"product_id": "python3.11-requests-0:2.31.0-3.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-requests@2.31.0-3.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.src",
"product": {
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.src",
"product_id": "python3.11-urllib3-0:2.6.3-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-urllib3@2.6.3-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-core-1:2.16.15-1.el9ap.src",
"product": {
"name": "ansible-core-1:2.16.15-1.el9ap.src",
"product_id": "ansible-core-1:2.16.15-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-core@2.16.15-1.el9ap?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"product": {
"name": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"product_id": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-galaxy-importer@0.4.37-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.src",
"product": {
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.src",
"product_id": "ansible-dev-tools-0:26.1.0-2.el10ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-dev-tools@26.1.0-2.el10ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-lint-0:26.1.0-2.el10ap.src",
"product": {
"name": "ansible-lint-0:26.1.0-2.el10ap.src",
"product_id": "ansible-lint-0:26.1.0-2.el10ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-lint@26.1.0-2.el10ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-navigator-0:26.1.1-2.el10ap.src",
"product": {
"name": "ansible-navigator-0:26.1.1-2.el10ap.src",
"product_id": "ansible-navigator-0:26.1.1-2.el10ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-navigator@26.1.1-2.el10ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-django-0:4.2.27-2.el10ap.src",
"product": {
"name": "python-django-0:4.2.27-2.el10ap.src",
"product_id": "python-django-0:4.2.27-2.el10ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-django@4.2.27-2.el10ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-core-2:2.16.15-2.el10ap.src",
"product": {
"name": "ansible-core-2:2.16.15-2.el10ap.src",
"product_id": "ansible-core-2:2.16.15-2.el10ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-core@2.16.15-2.el10ap?arch=src\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el10ap.src",
"product": {
"name": "receptor-0:1.6.3-2.el10ap.src",
"product_id": "receptor-0:1.6.3-2.el10ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el10ap?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-django-0:4.2.27-2.el9ap.noarch",
"product": {
"name": "python3.11-django-0:4.2.27-2.el9ap.noarch",
"product_id": "python3.11-django-0:4.2.27-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django@4.2.27-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"product": {
"name": "python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"product_id": "python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulpcore@3.49.49-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"product": {
"name": "ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"product_id": "ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-automation-platform-installer@2.6-4.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-navigator-0:26.1.1-2.el9ap.noarch",
"product": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.noarch",
"product_id": "ansible-navigator-0:26.1.1-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-navigator@26.1.1-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-hub-0:4.11.5-1.el9ap.noarch",
"product": {
"name": "automation-hub-0:4.11.5-1.el9ap.noarch",
"product_id": "automation-hub-0:4.11.5-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-hub@4.11.5-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"product": {
"name": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"product_id": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-dev-tools%2Bserver@26.1.0-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"product": {
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"product_id": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-dev-tools@26.1.0-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-lint-0:26.1.0-2.el9ap.noarch",
"product": {
"name": "ansible-lint-0:26.1.0-2.el9ap.noarch",
"product_id": "ansible-lint-0:26.1.0-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-lint@26.1.0-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"product_id": "automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-gateway@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"product_id": "automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-gateway-config@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"product_id": "automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-gateway-server@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"product_id": "automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.2.4-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"product_id": "automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-base@1.2.4-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"product_id": "automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-base-services@1.2.4-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"product_id": "automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-event-stream-services@1.2.4-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"product_id": "automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-worker-services@1.2.4-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bactivitystream@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bapi_documentation@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bauthentication@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bchannel_auth@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bfeature_flags@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bjwt_consumer@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Boauth2_provider@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Brbac@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bredis_client@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Bresource_registry@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base%2Brest_filters@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"product": {
"name": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"product_id": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-django-ansible-base@2.6.20260121-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"product": {
"name": "automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"product_id": "automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-platform-ui@2.6.5-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"product": {
"name": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"product_id": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-galaxy-ng@4.11.5-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "receptorctl-0:1.6.3-2.el9ap.noarch",
"product": {
"name": "receptorctl-0:1.6.3-2.el9ap.noarch",
"product_id": "receptorctl-0:1.6.3-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptorctl@1.6.3-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"product": {
"name": "automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"product_id": "automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-cli@4.7.8-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-controller-server-0:4.7.8-1.el9ap.noarch",
"product": {
"name": "automation-controller-server-0:4.7.8-1.el9ap.noarch",
"product_id": "automation-controller-server-0:4.7.8-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-server@4.7.8-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"product": {
"name": "automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"product_id": "automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-ui@4.7.8-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"product": {
"name": "python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"product_id": "python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-botocore@1.34.162-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-requests-0:2.31.0-3.el9ap.noarch",
"product": {
"name": "python3.11-requests-0:2.31.0-3.el9ap.noarch",
"product_id": "python3.11-requests-0:2.31.0-3.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-requests@2.31.0-3.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"product": {
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"product_id": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-urllib3@2.6.3-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-core-1:2.16.15-1.el9ap.noarch",
"product": {
"name": "ansible-core-1:2.16.15-1.el9ap.noarch",
"product_id": "ansible-core-1:2.16.15-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-core@2.16.15-1.el9ap?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "ansible-test-1:2.16.15-1.el9ap.noarch",
"product": {
"name": "ansible-test-1:2.16.15-1.el9ap.noarch",
"product_id": "ansible-test-1:2.16.15-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-test@2.16.15-1.el9ap?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"product": {
"name": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"product_id": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-galaxy-importer@0.4.37-2.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"product": {
"name": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"product_id": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-dev-tools%2Bserver@26.1.0-2.el10ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"product": {
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"product_id": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-dev-tools@26.1.0-2.el10ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-lint-0:26.1.0-2.el10ap.noarch",
"product": {
"name": "ansible-lint-0:26.1.0-2.el10ap.noarch",
"product_id": "ansible-lint-0:26.1.0-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-lint@26.1.0-2.el10ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-navigator-0:26.1.1-2.el10ap.noarch",
"product": {
"name": "ansible-navigator-0:26.1.1-2.el10ap.noarch",
"product_id": "ansible-navigator-0:26.1.1-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-navigator@26.1.1-2.el10ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-django-0:4.2.27-2.el10ap.noarch",
"product": {
"name": "python3-django-0:4.2.27-2.el10ap.noarch",
"product_id": "python3-django-0:4.2.27-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-django@4.2.27-2.el10ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-core-2:2.16.15-2.el10ap.noarch",
"product": {
"name": "ansible-core-2:2.16.15-2.el10ap.noarch",
"product_id": "ansible-core-2:2.16.15-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-core@2.16.15-2.el10ap?arch=noarch\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "receptorctl-0:1.6.3-2.el10ap.noarch",
"product": {
"name": "receptorctl-0:1.6.3-2.el10ap.noarch",
"product_id": "receptorctl-0:1.6.3-2.el10ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptorctl@1.6.3-2.el10ap?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"product": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"product_id": "python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf@4.25.8-1.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"product": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"product_id": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debugsource@4.25.8-1.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"product": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"product_id": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debuginfo@4.25.8-1.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el9ap.x86_64",
"product": {
"name": "receptor-0:1.6.3-2.el9ap.x86_64",
"product_id": "receptor-0:1.6.3-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"product_id": "receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"product_id": "receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "automation-controller-0:4.7.8-1.el9ap.x86_64",
"product": {
"name": "automation-controller-0:4.7.8-1.el9ap.x86_64",
"product_id": "automation-controller-0:4.7.8-1.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller@4.7.8-1.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"product": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"product_id": "automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-venv-tower@4.7.8-1.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el10ap.x86_64",
"product": {
"name": "receptor-0:1.6.3-2.el10ap.x86_64",
"product_id": "receptor-0:1.6.3-2.el10ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el10ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"product_id": "receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el10ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"product_id": "receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el10ap?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"product": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"product_id": "python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf@4.25.8-1.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"product": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"product_id": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debugsource@4.25.8-1.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"product": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"product_id": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debuginfo@4.25.8-1.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el9ap.ppc64le",
"product": {
"name": "receptor-0:1.6.3-2.el9ap.ppc64le",
"product_id": "receptor-0:1.6.3-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"product_id": "receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"product_id": "receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "automation-controller-0:4.7.8-1.el9ap.ppc64le",
"product": {
"name": "automation-controller-0:4.7.8-1.el9ap.ppc64le",
"product_id": "automation-controller-0:4.7.8-1.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller@4.7.8-1.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"product": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"product_id": "automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-venv-tower@4.7.8-1.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el10ap.ppc64le",
"product": {
"name": "receptor-0:1.6.3-2.el10ap.ppc64le",
"product_id": "receptor-0:1.6.3-2.el10ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el10ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"product_id": "receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el10ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"product_id": "receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el10ap?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"product": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"product_id": "python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf@4.25.8-1.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"product": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"product_id": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debugsource@4.25.8-1.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"product": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"product_id": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debuginfo@4.25.8-1.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el9ap.s390x",
"product": {
"name": "receptor-0:1.6.3-2.el9ap.s390x",
"product_id": "receptor-0:1.6.3-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"product_id": "receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"product_id": "receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "automation-controller-0:4.7.8-1.el9ap.s390x",
"product": {
"name": "automation-controller-0:4.7.8-1.el9ap.s390x",
"product_id": "automation-controller-0:4.7.8-1.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller@4.7.8-1.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"product": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"product_id": "automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-venv-tower@4.7.8-1.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el10ap.s390x",
"product": {
"name": "receptor-0:1.6.3-2.el10ap.s390x",
"product_id": "receptor-0:1.6.3-2.el10ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el10ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"product_id": "receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el10ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"product_id": "receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el10ap?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"product": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"product_id": "python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf@4.25.8-1.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"product": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"product_id": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debugsource@4.25.8-1.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"product": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"product_id": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-protobuf-debuginfo@4.25.8-1.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el9ap.aarch64",
"product": {
"name": "receptor-0:1.6.3-2.el9ap.aarch64",
"product_id": "receptor-0:1.6.3-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"product_id": "receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"product_id": "receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "automation-controller-0:4.7.8-1.el9ap.aarch64",
"product": {
"name": "automation-controller-0:4.7.8-1.el9ap.aarch64",
"product_id": "automation-controller-0:4.7.8-1.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller@4.7.8-1.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"product": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"product_id": "automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-controller-venv-tower@4.7.8-1.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "receptor-0:1.6.3-2.el10ap.aarch64",
"product": {
"name": "receptor-0:1.6.3-2.el10ap.aarch64",
"product_id": "receptor-0:1.6.3-2.el10ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor@1.6.3-2.el10ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"product": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"product_id": "receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debugsource@1.6.3-2.el10ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"product": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"product_id": "receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/receptor-debuginfo@1.6.3-2.el10ap?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-2:2.16.15-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch"
},
"product_reference": "ansible-core-2:2.16.15-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-2:2.16.15-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src"
},
"product_reference": "ansible-core-2:2.16.15-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch"
},
"product_reference": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch"
},
"product_reference": "ansible-lint-0:26.1.0-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src"
},
"product_reference": "ansible-lint-0:26.1.0-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-django-0:4.2.27-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src"
},
"product_reference": "python-django-0:4.2.27-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-django-0:4.2.27-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch"
},
"product_reference": "python3-django-0:4.2.27-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-2:2.16.15-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch"
},
"product_reference": "ansible-core-2:2.16.15-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-2:2.16.15-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src"
},
"product_reference": "ansible-core-2:2.16.15-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch"
},
"product_reference": "ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch"
},
"product_reference": "ansible-lint-0:26.1.0-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src"
},
"product_reference": "ansible-lint-0:26.1.0-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-django-0:4.2.27-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src"
},
"product_reference": "python-django-0:4.2.27-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-django-0:4.2.27-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch"
},
"product_reference": "python3-django-0:4.2.27-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el10ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64"
},
"product_reference": "receptor-0:1.6.3-2.el10ap.aarch64",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el10ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le"
},
"product_reference": "receptor-0:1.6.3-2.el10ap.ppc64le",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el10ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x"
},
"product_reference": "receptor-0:1.6.3-2.el10ap.s390x",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el10ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src"
},
"product_reference": "receptor-0:1.6.3-2.el10ap.src",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el10ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64"
},
"product_reference": "receptor-0:1.6.3-2.el10ap.x86_64",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el10ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el10ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptorctl-0:1.6.3-2.el10ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 10",
"product_id": "10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch"
},
"product_reference": "receptorctl-0:1.6.3-2.el10ap.noarch",
"relates_to_product_reference": "10Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-1:2.16.15-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch"
},
"product_reference": "ansible-core-1:2.16.15-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-1:2.16.15-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src"
},
"product_reference": "ansible-core-1:2.16.15-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-lint-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src"
},
"product_reference": "ansible-lint-0:26.1.0-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-0:4.7.8-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src"
},
"product_reference": "automation-controller-0:4.7.8-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-cli-0:4.7.8-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch"
},
"product_reference": "automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-0:4.2.27-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch"
},
"product_reference": "python3.11-django-0:4.2.27-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-0:4.2.27-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src"
},
"product_reference": "python3.11-django-0:4.2.27-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-requests-0:2.31.0-3.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch"
},
"product_reference": "python3.11-requests-0:2.31.0-3.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-requests-0:2.31.0-3.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src"
},
"product_reference": "python3.11-requests-0:2.31.0-3.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch"
},
"product_reference": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src"
},
"product_reference": "python3.11-urllib3-0:2.6.3-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptorctl-0:1.6.3-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch"
},
"product_reference": "receptorctl-0:1.6.3-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Developer-1.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-1:2.16.15-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch"
},
"product_reference": "ansible-core-1:2.16.15-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-1:2.16.15-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src"
},
"product_reference": "ansible-core-1:2.16.15-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-lint-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src"
},
"product_reference": "ansible-lint-0:26.1.0-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptorctl-0:1.6.3-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch"
},
"product_reference": "receptorctl-0:1.6.3-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6-Inside-1.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-automation-platform-installer-0:2.6-4.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch"
},
"product_reference": "ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-automation-platform-installer-0:2.6-4.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src"
},
"product_reference": "ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-1:2.16.15-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch"
},
"product_reference": "ansible-core-1:2.16.15-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-core-1:2.16.15-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src"
},
"product_reference": "ansible-core-1:2.16.15-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-dev-tools-0:26.1.0-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src"
},
"product_reference": "ansible-dev-tools-0:26.1.0-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch"
},
"product_reference": "ansible-lint-0:26.1.0-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-lint-0:26.1.0-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src"
},
"product_reference": "ansible-lint-0:26.1.0-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-navigator-0:26.1.1-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src"
},
"product_reference": "ansible-navigator-0:26.1.1-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-test-1:2.16.15-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch"
},
"product_reference": "ansible-test-1:2.16.15-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-0:4.7.8-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64"
},
"product_reference": "automation-controller-0:4.7.8-1.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-0:4.7.8-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le"
},
"product_reference": "automation-controller-0:4.7.8-1.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-0:4.7.8-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x"
},
"product_reference": "automation-controller-0:4.7.8-1.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-0:4.7.8-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src"
},
"product_reference": "automation-controller-0:4.7.8-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-0:4.7.8-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64"
},
"product_reference": "automation-controller-0:4.7.8-1.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-cli-0:4.7.8-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch"
},
"product_reference": "automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-server-0:4.7.8-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch"
},
"product_reference": "automation-controller-server-0:4.7.8-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-ui-0:4.7.8-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch"
},
"product_reference": "automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64"
},
"product_reference": "automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le"
},
"product_reference": "automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x"
},
"product_reference": "automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64"
},
"product_reference": "automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.2.4-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.2.4-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src"
},
"product_reference": "automation-eda-controller-0:1.2.4-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-base-0:1.2.4-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-gateway-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-gateway-0:2.6.20260121-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src"
},
"product_reference": "automation-gateway-0:2.6.20260121-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-gateway-config-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-gateway-server-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-hub-0:4.11.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch"
},
"product_reference": "automation-hub-0:4.11.5-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-hub-0:4.11.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src"
},
"product_reference": "automation-hub-0:4.11.5-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-platform-ui-0:2.6.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch"
},
"product_reference": "automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-platform-ui-0:2.6.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src"
},
"product_reference": "automation-platform-ui-0:2.6.5-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-botocore-0:1.34.162-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch"
},
"product_reference": "python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-botocore-0:1.34.162-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src"
},
"product_reference": "python3.11-botocore-0:1.34.162-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-0:4.2.27-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch"
},
"product_reference": "python3.11-django-0:4.2.27-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-0:4.2.27-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src"
},
"product_reference": "python3.11-django-0:4.2.27-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch"
},
"product_reference": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src"
},
"product_reference": "python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch"
},
"product_reference": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src"
},
"product_reference": "python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch"
},
"product_reference": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src"
},
"product_reference": "python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64"
},
"product_reference": "python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le"
},
"product_reference": "python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x"
},
"product_reference": "python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src"
},
"product_reference": "python3.11-protobuf-0:4.25.8-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-0:4.25.8-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64"
},
"product_reference": "python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64"
},
"product_reference": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le"
},
"product_reference": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x"
},
"product_reference": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64"
},
"product_reference": "python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64"
},
"product_reference": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le"
},
"product_reference": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x"
},
"product_reference": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64"
},
"product_reference": "python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulpcore-0:3.49.49-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch"
},
"product_reference": "python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulpcore-0:3.49.49-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src"
},
"product_reference": "python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-requests-0:2.31.0-3.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch"
},
"product_reference": "python3.11-requests-0:2.31.0-3.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-requests-0:2.31.0-3.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src"
},
"product_reference": "python3.11-requests-0:2.31.0-3.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch"
},
"product_reference": "python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-urllib3-0:2.6.3-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src"
},
"product_reference": "python3.11-urllib3-0:2.6.3-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-0:1.6.3-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64"
},
"product_reference": "receptor-0:1.6.3-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debuginfo-0:1.6.3-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64"
},
"product_reference": "receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptor-debugsource-0:1.6.3-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64"
},
"product_reference": "receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "receptorctl-0:1.6.3-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.6 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
},
"product_reference": "receptorctl-0:1.6.3-2.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-4565",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"discovery_date": "2025-06-16T15:00:59.960924+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2373016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the python protobuf package which can result in a denial of service. Applications that parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recursive messages, or a series of SGROUP\u00a0tags can be corrupted by exceeding the Python recursion limit. This can result in a Denial of service by crashing the application that integrates the package with a RecursionError.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-protobuf: Unbounded recursion in Python Protobuf",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The availability impact of this denial-of-service vulnerability is confined to applications that directly integrate the Protobuf package. Within the context of a Red Hat system, the host machine itself is not expected to be impacted, thereby limiting the scope of disruption to individual application instances rather than broader system instability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64"
],
"known_not_affected": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4565"
},
{
"category": "external",
"summary": "RHBZ#2373016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2373016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4565",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4565"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4565",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4565"
},
{
"category": "external",
"summary": "https://github.com/protocolbuffers/protobuf/commit/17838beda2943d08b8a9d4df5b68f5f04f26d901",
"url": "https://github.com/protocolbuffers/protobuf/commit/17838beda2943d08b8a9d4df5b68f5f04f26d901"
}
],
"release_date": "2025-06-16T14:50:40.906000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T19:58:10+00:00",
"details": "For details on how to apply this update, refer to Ansible Automation Platform documentation.",
"product_ids": [
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-protobuf: Unbounded recursion in Python Protobuf"
},
{
"cve": "CVE-2025-53643",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2025-07-14T21:00:57.122280+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380000"
}
],
"notes": [
{
"category": "description",
"text": "A request smuggling flaw was found in the aiohttp python library. If a pure Python version of aiohttp is installed, without the usual C extensions, for example, or if AIOHTTP_NO_EXTENSIONS is enabled, an attacker can execute a request smuggling attack to bypass certain firewalls or proxy protections.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "aiohttp: AIOHTTP HTTP Request/Response Smuggling",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64"
],
"known_not_affected": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-53643"
},
{
"category": "external",
"summary": "RHBZ#2380000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-53643",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53643"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-53643",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-53643"
},
{
"category": "external",
"summary": "https://github.com/aio-libs/aiohttp/commit/e8d774f635dc6d1cd3174d0e38891da5de0e2b6a",
"url": "https://github.com/aio-libs/aiohttp/commit/e8d774f635dc6d1cd3174d0e38891da5de0e2b6a"
},
{
"category": "external",
"summary": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-9548-qrrj-x5pj",
"url": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-9548-qrrj-x5pj"
}
],
"release_date": "2025-07-14T20:17:18.247000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T19:58:10+00:00",
"details": "For details on how to apply this update, refer to Ansible Automation Platform documentation.",
"product_ids": [
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.7,
"baseSeverity": "LOW",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "aiohttp: AIOHTTP HTTP Request/Response Smuggling"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64"
],
"known_not_affected": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T19:58:10+00:00",
"details": "For details on how to apply this update, refer to Ansible Automation Platform documentation.",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-64460",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"discovery_date": "2025-12-02T16:01:05.300335+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418366"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Django. This vulnerability allows a remote attacker to cause a potential denial-of-service (DoS) attack triggering Central Processing Unit (CPU) and memory exhaustion via specially crafted Extensible Markup Language (XML) input processed by the XML Deserializer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Django: Django: Algorithmic complexity in XML Deserializer leads to denial of service",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products that process XML input using Django\u0027s XML Deserializer, including Red Hat Ansible Automation Platform, Red Hat OpenStack Platform, and OpenShift Service Mesh. A remote attacker can exploit this flaw by providing specially crafted XML, leading to a denial-of-service due to CPU and memory exhaustion.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src"
],
"known_not_affected": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64460"
},
{
"category": "external",
"summary": "RHBZ#2418366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418366"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64460",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64460"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64460",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64460"
},
{
"category": "external",
"summary": "https://docs.djangoproject.com/en/dev/releases/security/",
"url": "https://docs.djangoproject.com/en/dev/releases/security/"
},
{
"category": "external",
"summary": "https://groups.google.com/g/django-announce",
"url": "https://groups.google.com/g/django-announce"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2025/dec/02/security-releases/",
"url": "https://www.djangoproject.com/weblog/2025/dec/02/security-releases/"
}
],
"release_date": "2025-12-02T15:15:34.451000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T19:58:10+00:00",
"details": "For details on how to apply this update, refer to Ansible Automation Platform documentation.",
"product_ids": [
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Django: Django: Algorithmic complexity in XML Deserializer leads to denial of service"
},
{
"cve": "CVE-2025-66471",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2025-12-05T17:02:21.597728+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2419467"
}
],
"notes": [
{
"category": "description",
"text": "A decompression handling flaw has been discovered in urllib3. When streaming a compressed response, urllib3 can perform decoding or decompression based on the HTTP Content-Encoding header (e.g., gzip, deflate, br, or zstd). The library must read compressed data from the network and decompress it until the requested chunk size is met. Any resulting decompressed data that exceeds the requested amount is held in an internal buffer for the next read operation. The decompression logic could cause urllib3 to fully decode a small amount of highly compressed data in a single operation. This can result in excessive resource consumption (high CPU usage and massive memory allocation for the decompressed data; CWE-409) on the client side, even if the application only requested a small chunk of data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "urllib3: urllib3 Streaming API improperly handles highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src"
],
"known_not_affected": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-66471"
},
{
"category": "external",
"summary": "RHBZ#2419467",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2419467"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-66471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-66471"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-66471"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7",
"url": "https://github.com/urllib3/urllib3/commit/c19571de34c47de3a766541b041637ba5f716ed7"
},
{
"category": "external",
"summary": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37",
"url": "https://github.com/urllib3/urllib3/security/advisories/GHSA-2xpw-w6gg-jr37"
}
],
"release_date": "2025-12-05T16:06:08.531000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T19:58:10+00:00",
"details": "For details on how to apply this update, refer to Ansible Automation Platform documentation.",
"product_ids": [
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "urllib3: urllib3 Streaming API improperly handles highly compressed data"
},
{
"cve": "CVE-2025-69223",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-06T20:01:19.831548+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2427456"
}
],
"notes": [
{
"category": "description",
"text": "A decompression based denial of service flaw has been discovered in the AIOHTTP python library. Library versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could exhaust the host\u0027s memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "aiohttp: AIOHTTP\u0027s HTTP Parser auto_decompress feature is vulnerable to zip bomb",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64"
],
"known_not_affected": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-69223"
},
{
"category": "external",
"summary": "RHBZ#2427456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2427456"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-69223",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-69223"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-69223",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-69223"
},
{
"category": "external",
"summary": "https://github.com/aio-libs/aiohttp/commit/2b920c39002cee0ec5b402581779bbaaf7c9138a",
"url": "https://github.com/aio-libs/aiohttp/commit/2b920c39002cee0ec5b402581779bbaaf7c9138a"
},
{
"category": "external",
"summary": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-6mq8-rvhq-8wgg",
"url": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-6mq8-rvhq-8wgg"
}
],
"release_date": "2026-01-05T22:00:17.715000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-01-26T19:58:10+00:00",
"details": "For details on how to apply this update, refer to Ansible Automation Platform documentation.",
"product_ids": [
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1249"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-core-2:2.16.15-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python-django-0:4.2.27-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:python3-django-0:4.2.27-2.el10ap.noarch",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.src",
"10Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.aarch64",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.ppc64le",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.s390x",
"10Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el10ap.x86_64",
"10Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el10ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Developer-1.3:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6-Inside-1.4:receptorctl-0:1.6.3-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-automation-platform-installer-0:2.6-4.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-core-1:2.16.15-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools+server-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-dev-tools-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-lint-0:26.1.0-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:ansible-navigator-0:26.1.1-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:ansible-test-1:2.16.15-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-cli-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-server-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-ui-0:4.7.8-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:automation-controller-venv-tower-0:4.7.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-0:1.2.4-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-base-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-event-stream-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-eda-controller-worker-services-0:1.2.4-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-config-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-gateway-server-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-hub-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:automation-platform-ui-0:2.6.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-botocore-0:1.34.162-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-0:4.2.27-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+activitystream-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+api_documentation-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+authentication-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+channel_auth-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+feature_flags-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+jwt_consumer-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+oauth2_provider-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rbac-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+redis_client-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+resource_registry-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base+rest_filters-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-django-ansible-base-0:2.6.20260121-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-importer-0:0.4.37-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-galaxy-ng-0:4.11.5-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debuginfo-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:python3.11-protobuf-debugsource-0:4.25.8-1.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-pulpcore-0:3.49.49-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-requests-0:2.31.0-3.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.6:python3.11-urllib3-0:2.6.3-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.6:receptor-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debuginfo-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.6:receptor-debugsource-0:1.6.3-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.6:receptorctl-0:1.6.3-2.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "aiohttp: AIOHTTP\u0027s HTTP Parser auto_decompress feature is vulnerable to zip bomb"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.