Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-61729 (GCVE-0-2025-61729)
Vulnerability from cvelistv5 – Published: 2025-12-02 18:54 – Updated: 2025-12-03 19:37- CWE-400 - Uncontrolled Resource Consumption
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | crypto/x509 |
Affected:
0 , < 1.24.11
(semver)
Affected: 1.25.0 , < 1.25.5 (semver) |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2025-61729",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-12-02T21:52:36.341575Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-12-02T21:52:58.224Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "crypto/x509",
"product": "crypto/x509",
"programRoutines": [
{
"name": "Certificate.VerifyHostname"
},
{
"name": "Certificate.Verify"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.24.11",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.25.5",
"status": "affected",
"version": "1.25.0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Philippe Antoine (Catena cyber)"
}
],
"descriptions": [
{
"lang": "en",
"value": "Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-12-03T19:37:14.903Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/725920"
},
{
"url": "https://go.dev/issue/76445"
},
{
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"title": "Excessive resource consumption when printing error string for host certificate validation in crypto/x509"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2025-61729",
"datePublished": "2025-12-02T18:54:10.166Z",
"dateReserved": "2025-09-30T15:05:03.605Z",
"dateUpdated": "2025-12-03T19:37:14.903Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-61729",
"date": "2026-07-01",
"epss": "0.00459",
"percentile": "0.3655"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-61729\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2025-12-02T19:15:51.447\",\"lastModified\":\"2026-06-17T09:50:48.507\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"crypto/x509\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"crypto/x509\",\"programRoutines\":[{\"name\":\"Certificate.VerifyHostname\"},{\"name\":\"Certificate.Verify\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.24.11\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.25.0\",\"lessThan\":\"1.25.5\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2025-12-02T21:52:36.341575Z\",\"id\":\"CVE-2025-61729\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.24.11\",\"matchCriteriaId\":\"F2E6FD2A-A487-4099-B91D-2429F286AC6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.25.0\",\"versionEndExcluding\":\"1.25.5\",\"matchCriteriaId\":\"39C03A37-B94B-46E4-B1C2-A70A870F8E53\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/725920\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/76445\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/8FJoBkPddm4\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2025-4155\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-61729\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-12-02T21:52:36.341575Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-12-02T21:52:53.822Z\"}}], \"cna\": {\"title\": \"Excessive resource consumption when printing error string for host certificate validation in crypto/x509\", \"credits\": [{\"lang\": \"en\", \"value\": \"Philippe Antoine (Catena cyber)\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"crypto/x509\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.24.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.25.0\", \"lessThan\": \"1.25.5\", \"versionType\": \"semver\"}], \"packageName\": \"crypto/x509\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Certificate.VerifyHostname\"}, {\"name\": \"Certificate.Verify\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/725920\"}, {\"url\": \"https://go.dev/issue/76445\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/8FJoBkPddm4\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2025-4155\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Within HostnameError.Error(), when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can result in excessive resource consumption.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2025-12-03T19:37:14.903Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-61729\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-12-03T19:37:14.903Z\", \"dateReserved\": \"2025-09-30T15:05:03.605Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2025-12-02T18:54:10.166Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:15979
Vulnerability from csaf_redhat - Published: 2026-05-11 11:23 - Updated: 2026-07-02 13:11A vulnerability was identified in the email parsing library due to improper handling of specially formatted recipient email addresses. An attacker can exploit this flaw by crafting a recipient address that embeds an external address within quotes. This causes the application to misdirect the email to the attacker's external address instead of the intended internal recipient. This could lead to a significant data leak of sensitive information and allow an attacker to bypass security filters and access controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
A flaw was found in the SSH Agent servers component (golang.org/x/crypto/ssh/agent). This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages, leading to an out-of-bounds read that can cause the program to panic and terminate.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
A flaw was found in golang.org/x/crypto/ssh. An attacker can exploit this vulnerability by sending specially crafted GSSAPI (Generic Security Service Application Program Interface) authentication requests to an SSH (Secure Shell) server. The server fails to validate the number of mechanisms specified in these requests, leading to unbounded memory consumption. This can result in a Denial of Service (DoS), making the SSH server unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — | ||
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
A prototype pollution flaw has been discovered in the js-yaml npm library. It's possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (__proto__). All users who parse untrusted yaml documents may be impacted.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
A flaw was found in glob. This vulnerability allows arbitrary command execution via processing files with malicious names when the glob command-line interface (CLI) is used with the -c/--cmd option, enabling shell metacharacters to trigger command injection.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service (DoS) via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic and application crash.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of Red Hat build of Ceph Storage has been released",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 8.1.\nThis release updates to the latest version.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:15979",
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-13033",
"url": "https://access.redhat.com/security/cve/CVE-2025-13033"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-47914",
"url": "https://access.redhat.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-58181",
"url": "https://access.redhat.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-64718",
"url": "https://access.redhat.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-64756",
"url": "https://access.redhat.com/security/cve/CVE-2025-64756"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68156",
"url": "https://access.redhat.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_ceph_storage/",
"url": "https://docs.redhat.com/en/documentation/red_hat_ceph_storage/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_15979.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Ceph Storage",
"tracking": {
"current_release_date": "2026-07-02T13:11:32+00:00",
"generator": {
"date": "2026-07-02T13:11:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:15979",
"initial_release_date": "2026-05-11T11:23:46+00:00",
"revision_history": [
{
"date": "2026-05-11T11:23:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-11T11:23:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ceph Storage 8.1",
"product": {
"name": "Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ceph_storage:8.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ceph Storage"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3A3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3A2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3Ae0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3Ab2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3A808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c?arch=amd64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3Ac27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3Aaeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3Af76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3A3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3Af7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3A7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1?arch=arm64\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3Aa6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3Afa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3A28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3A5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3A5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059?arch=s390x\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"product_id": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel9@sha256%3A67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566546"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-haproxy-rhel9@sha256%3A0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566519"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"product_id": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/keepalived-rhel9@sha256%3A02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566772"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"product_id": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oauth2-proxy-rhel9@sha256%3A1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566148"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-promtail-rhel9@sha256%3Acbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777566201"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"product_id": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rhceph-8-rhel9@sha256%3Adf6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1778049929"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"product": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"product_id": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/snmp-notifier-rhel9@sha256%3Abf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79?arch=ppc64le\u0026repository_url=registry.redhat.io/rhceph\u0026tag=1777567370"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
},
"product_reference": "registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x"
},
"product_reference": "registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64"
},
"product_reference": "registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64"
},
"product_reference": "registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64 as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le as a component of Red Hat Ceph Storage 8.1",
"product_id": "Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
},
"product_reference": "registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le",
"relates_to_product_reference": "Red Hat Ceph Storage 8.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-13033",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2025-10-07T15:03:14.483722+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2402179"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was identified in the email parsing library due to improper handling of specially formatted recipient email addresses. An attacker can exploit this flaw by crafting a recipient address that embeds an external address within quotes. This causes the application to misdirect the email to the attacker\u0027s external address instead of the intended internal recipient. This could lead to a significant data leak of sensitive information and allow an attacker to bypass security filters and access controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodemailer: Nodemailer: Email to an unintended domain can occur due to Interpretation Conflict",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability allows an attacker to force nodemailer to send an email to an attacker-owned email address by leveraging the incorrect handling of quoted local-parts containing the \u0027@\u0027 character in the destination email address. When successfully exploited, this vulnerability may allow an attacker to exfiltrate data by misrouting emails to an unintended domain, presenting a high impact on data confidentiality.\n\nThis vulnerability has been assessed as having a Moderate impact on Red Hat Products by the Red Hat Product Security team. This is because for an attacker successfully exploit this vulnerability, the malicious actor needs to have direct control over the destination email input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-13033"
},
{
"category": "external",
"summary": "RHBZ#2402179",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402179"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-13033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-13033"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-13033",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-13033"
},
{
"category": "external",
"summary": "https://github.com/nodemailer/nodemailer",
"url": "https://github.com/nodemailer/nodemailer"
},
{
"category": "external",
"summary": "https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626",
"url": "https://github.com/nodemailer/nodemailer/commit/1150d99fba77280df2cfb1885c43df23109a8626"
},
{
"category": "external",
"summary": "https://github.com/nodemailer/nodemailer/security/advisories/GHSA-mm7p-fcc7-pg87",
"url": "https://github.com/nodemailer/nodemailer/security/advisories/GHSA-mm7p-fcc7-pg87"
}
],
"release_date": "2025-10-07T13:42:02+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "Currently there\u0027s no available mitigation for this flaw.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodemailer: Nodemailer: Email to an unintended domain can occur due to Interpretation Conflict"
},
{
"cve": "CVE-2025-47914",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-11-19T21:01:06.202641+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2416000"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the SSH Agent servers component (golang.org/x/crypto/ssh/agent). This vulnerability allows a remote attacker to cause a denial of service (DoS) by sending a specially crafted, malformed message during new identity requests. The server fails to validate the size of these messages, leading to an out-of-bounds read that can cause the program to panic and terminate.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat products. The golang.org/x/crypto/ssh/agent library, when used in SSH Agent servers, does not properly validate the size of messages during new identity requests. A specially crafted malformed message can lead to an out-of-bounds read, causing the program to panic and resulting in a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47914"
},
{
"category": "external",
"summary": "RHBZ#2416000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2416000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47914"
},
{
"category": "external",
"summary": "https://go.dev/cl/721960",
"url": "https://go.dev/cl/721960"
},
{
"category": "external",
"summary": "https://go.dev/issue/76364",
"url": "https://go.dev/issue/76364"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA",
"url": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4135",
"url": "https://pkg.go.dev/vuln/GO-2025-4135"
}
],
"release_date": "2025-11-19T20:33:43.126000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages"
},
{
"cve": "CVE-2025-58181",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-11-19T21:00:50.197590+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415997"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang.org/x/crypto/ssh. An attacker can exploit this vulnerability by sending specially crafted GSSAPI (Generic Security Service Application Program Interface) authentication requests to an SSH (Secure Shell) server. The server fails to validate the number of mechanisms specified in these requests, leading to unbounded memory consumption. This can result in a Denial of Service (DoS), making the SSH server unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate for Red Hat. SSH servers utilizing `golang.org/x/crypto/ssh` and configured to process GSSAPI authentication requests are susceptible to unbounded memory consumption. An attacker can exploit this by sending specially crafted GSSAPI authentication requests, potentially leading to a denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "RHBZ#2415997",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415997"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58181"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58181",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58181"
},
{
"category": "external",
"summary": "https://go.dev/cl/721961",
"url": "https://go.dev/cl/721961"
},
{
"category": "external",
"summary": "https://go.dev/issue/76363",
"url": "https://go.dev/issue/76363"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA",
"url": "https://groups.google.com/g/golang-announce/c/w-oX3UxNcZA"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4134",
"url": "https://pkg.go.dev/vuln/GO-2025-4134"
}
],
"release_date": "2025-11-19T20:33:42.795000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-64718",
"cwe": {
"id": "CWE-1321",
"name": "Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)"
},
"discovery_date": "2025-11-13T16:01:24.744054+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414854"
}
],
"notes": [
{
"category": "description",
"text": "A prototype pollution flaw has been discovered in the js-yaml npm library. It\u0027s possible for an attacker to modify the prototype of the result of a parsed yaml document via prototype pollution (__proto__). All users who parse untrusted yaml documents may be impacted.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "js-yaml: js-yaml prototype pollution in merge",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64718"
},
{
"category": "external",
"summary": "RHBZ#2414854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64718",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64718"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64718",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64718"
},
{
"category": "external",
"summary": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879",
"url": "https://github.com/nodeca/js-yaml/commit/383665ff4248ec2192d1274e934462bb30426879"
},
{
"category": "external",
"summary": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m",
"url": "https://github.com/nodeca/js-yaml/security/advisories/GHSA-mh29-5h37-fv8m"
}
],
"release_date": "2025-11-13T15:32:44.634000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "js-yaml: js-yaml prototype pollution in merge"
},
{
"cve": "CVE-2025-64756",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2025-11-17T18:01:28.077927+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2415451"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in glob. This vulnerability allows arbitrary command execution via processing files with malicious names when the glob command-line interface (CLI) is used with the -c/--cmd option, enabling shell metacharacters to trigger command injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glob: glob: Command Injection Vulnerability via Malicious Filenames",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw in glob allows arbitrary command execution when the `glob` command-line interface is used with the `-c/--cmd` option to process files with malicious names. The vulnerability is triggered by shell metacharacters in filenames, leading to command injection. The glob CLI tool utilizes the -c option to execute shell commands over the files which matched the searched pattern by using the shell:true parameter when creating the subprocess which will further execute the command informed via \u0027-c\u0027 option, this parameter allows the shell meta characters to be used and processed when executing the command. Given that information glob misses to sanitize the file name to eliminate such characters and expressions from the filename, leading to code execution as when performing the shell expansion such characters will be interpreted as shell commands.\n\nTo exploit this vulnerability the targeted system should run the glob CLI over a file with a maliciously crafted filename, additionally the attacker needs to have enough permission to create such file or trick the user to download and process the required file with the glob CLI.\n\nThis flaw is present in the command line interface of the nodejs-glob package. When the package is used by npm, the command line interface is not used at all, so it cannot be triggered. However, the command line interface implementation is still present on the system, but not directly exposed to the user\u0027s $PATH. To reflect this condition, nodejs packages have been rated with a low severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-64756"
},
{
"category": "external",
"summary": "RHBZ#2415451",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2415451"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-64756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-64756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-64756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-64756"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146",
"url": "https://github.com/isaacs/node-glob/commit/47473c046b91c67269df7a66eab782a6c2716146"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2",
"url": "https://github.com/isaacs/node-glob/security/advisories/GHSA-5j98-mcp5-4vw2"
}
],
"release_date": "2025-11-17T17:29:08.029000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using the `glob` command-line interface with the `-c` or `--cmd` option when processing filenames from untrusted sources. If programmatic use of `glob` is necessary, ensure that filenames are thoroughly sanitized before being passed to commands executed with shell interpretation enabled.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "glob: glob: Command Injection Vulnerability via Malicious Filenames"
},
{
"cve": "CVE-2025-68156",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-12-16T19:01:42.049157+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2422891"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Expr, an expression language and expression evaluation for Go. This vulnerability allows a denial of service (DoS) via recursive traversal over user-provided deeply nested or cyclic data structures without enforcing a maximum recursion depth, leading to a stack overflow panic and application crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Important for Red Hat products utilizing the `Expr` Go library because it can lead to a denial-of-service. Exploitation requires an application to evaluate expressions against untrusted or insufficiently validated data structures containing deeply nested or cyclic references, which can cause a stack overflow and application crash. Products that do not process untrusted input with `Expr` are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"known_not_affected": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68156"
},
{
"category": "external",
"summary": "RHBZ#2422891",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2422891"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68156"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68156",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68156"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/pull/870",
"url": "https://github.com/expr-lang/expr/pull/870"
},
{
"category": "external",
"summary": "https://github.com/expr-lang/expr/security/advisories/GHSA-cfpf-hrx2-8rv6",
"url": "https://github.com/expr-lang/expr/security/advisories/GHSA-cfpf-hrx2-8rv6"
}
],
"release_date": "2025-12-16T18:24:11.648000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T11:23:46+00:00",
"details": "The container images provided by this update can be downloaded from the\nRed Hat container registry at registry.redhat.io using the \"podman pull\" command.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:15979"
},
{
"category": "workaround",
"details": "To mitigate this issue, applications using the `Expr` library should ensure that evaluation environments do not contain cyclic references. Additionally, externally supplied data structures must be validated or sanitized before being passed to `Expr` for evaluation. As a last-resort defensive measure, expression evaluation can be wrapped with panic recovery to prevent a full process crash.",
"product_ids": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:3d4903b8dbe33464c05ce219ee2e945bf1be169efbed73caee5185883c9df508_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:67d65ecfe844febb7afdfcfbdc0a31f3bd9dfb4c3c81f4734a1b146e34d8d5cb_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:a6a8bbdd49272c632edd96e1598d1e697ba3a1dabb8d36086eced4847de59cbb_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/grafana-rhel9@sha256:c27690e36faf7db08a6d398cce7dbedcfe74848224a179c7278b62315516dd4a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:02914a917bbea40c35be2cc7dbaf05c5ac1e1bd30b0e82b4ad9a1c58b99a076b_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:2ce063cc246e7694adf066c17390b4c8d95719b2786267a9db64390407648410_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:aeb508e1309d4a811f881f4028e1c370a5431d290aca2c4af5acdf6a58916a7f_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/keepalived-rhel9@sha256:fa3c9307038f92e351892be9c73cda40a3bab2038904fabcb97dad5568dcec2d_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:0f37c554cc22c9c89cc4c53739b2ef86e84287486e3f7cdbad10a6e53439d596_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:1a8207fe81e8c5bd63568eddddb41dd0da16d8340c5f5ae3615fe46ae864a163_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:9e15073c7782b0194c06e0b420573e49d5719002417faa567c99ee8409ff590d_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/oauth2-proxy-rhel9@sha256:f76307e201d0b2deaf0aa96bc6b62fc4535c8358b06a8e95ec5a8abf10d2da07_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:5c496cafb1e21883677c6dcb9fd7392383325b8529b98648af757545dfe59488_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:b2875bcf5aee1175faa2ab1ce163642e17c4948ff5aa76967d008f75b470fc74_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:df6bf531755753b224999cb9a5f087c96e8a512666589df4763d4a14941a6f5a_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-8-rhel9@sha256:f7e87de708186099c76426f24b53395340a672e282615164bac73afca3f36454_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:0350448bf1fb15f26c0d092ceb8b0618932f42d30ca4c7c62f2ec1b86c20dd23_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:4c8c8ef82f2f2685d76a9535523c4c93485329aa23328a68426e93789f363b53_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:7fa04ae06b25476b7b2a3f9e21279202571fd8fc5ff5012c980caf3f33edc0a5_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-haproxy-rhel9@sha256:8b20b6abf0399bbfc970990bc0c5b6dab46c1043ef761519dbbe8213e6fdd169_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:28aae4d07691c86cdfa9bbfcc7b68e1a3304402ac6c65982bfc0f7945cb9a44e_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:3b78f446debe56d01cd96dc3c3ae225a982ee6abdd7d2fabae553cf4c87e471a_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:cbc542505b4784050c96b3fb31a4867b5d94c8a6957b54a8cfad03bc16a19578_ppc64le",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/rhceph-promtail-rhel9@sha256:e0e44241bde7bfbccea69d06e5fd00ad0a0ab569bef6645687bcadcfc00aa5ef_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:5ccb9e878551c910e3a300ab8043fdc4788381c9515dc9dcaa965a738d2de059_s390x",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:7559ec0119f673e243361d4e457a8e9687beb3af60a4fd608fa211539b9034c1_arm64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:808082ac26e53bc7f962428d8e67f721654b732eb1d40fc6e272fcb7f045797c_amd64",
"Red Hat Ceph Storage 8.1:registry.redhat.io/rhceph/snmp-notifier-rhel9@sha256:bf282440c8e3ce4d38535bb1efdcbc05f0278647d2fc6e2a13c9c28c0c101f79_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/expr-lang/expr: Expr: Denial of Service via uncontrolled recursion in expression evaluation"
}
]
}
RHSA-2026:16102
Vulnerability from csaf_redhat - Published: 2026-05-11 22:53 - Updated: 2026-07-02 13:11A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic("unreachable") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for buildah is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images. \n\nSecurity Fix(es):\n\n* golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913)\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:16102",
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_16102.json"
}
],
"title": "Red Hat Security Advisory: buildah security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:32+00:00",
"generator": {
"date": "2026-07-02T13:11:32+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:16102",
"initial_release_date": "2026-05-11T22:53:25+00:00",
"revision_history": [
{
"date": "2026-05-11T22:53:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-11T22:53:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:32+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.26.11-1.el9_0.src",
"product": {
"name": "buildah-1:1.26.11-1.el9_0.src",
"product_id": "buildah-1:1.26.11-1.el9_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.26.11-1.el9_0?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.26.11-1.el9_0.aarch64",
"product": {
"name": "buildah-1:1.26.11-1.el9_0.aarch64",
"product_id": "buildah-1:1.26.11-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.26.11-1.el9_0?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.26.11-1.el9_0.aarch64",
"product": {
"name": "buildah-tests-1:1.26.11-1.el9_0.aarch64",
"product_id": "buildah-tests-1:1.26.11-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.26.11-1.el9_0?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"product": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"product_id": "buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.26.11-1.el9_0?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"product": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"product_id": "buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.26.11-1.el9_0?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"product": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"product_id": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.26.11-1.el9_0?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.26.11-1.el9_0.ppc64le",
"product": {
"name": "buildah-1:1.26.11-1.el9_0.ppc64le",
"product_id": "buildah-1:1.26.11-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.26.11-1.el9_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"product": {
"name": "buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"product_id": "buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.26.11-1.el9_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"product": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"product_id": "buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.26.11-1.el9_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"product": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"product_id": "buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.26.11-1.el9_0?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"product": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"product_id": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.26.11-1.el9_0?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.26.11-1.el9_0.x86_64",
"product": {
"name": "buildah-1:1.26.11-1.el9_0.x86_64",
"product_id": "buildah-1:1.26.11-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.26.11-1.el9_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.26.11-1.el9_0.x86_64",
"product": {
"name": "buildah-tests-1:1.26.11-1.el9_0.x86_64",
"product_id": "buildah-tests-1:1.26.11-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.26.11-1.el9_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"product": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"product_id": "buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.26.11-1.el9_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"product": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"product_id": "buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.26.11-1.el9_0?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64",
"product": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64",
"product_id": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.26.11-1.el9_0?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.26.11-1.el9_0.s390x",
"product": {
"name": "buildah-1:1.26.11-1.el9_0.s390x",
"product_id": "buildah-1:1.26.11-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.26.11-1.el9_0?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.26.11-1.el9_0.s390x",
"product": {
"name": "buildah-tests-1:1.26.11-1.el9_0.s390x",
"product_id": "buildah-tests-1:1.26.11-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.26.11-1.el9_0?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"product": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"product_id": "buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.26.11-1.el9_0?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"product": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"product_id": "buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.26.11-1.el9_0?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"product": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"product_id": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.26.11-1.el9_0?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.26.11-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64"
},
"product_reference": "buildah-1:1.26.11-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.26.11-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le"
},
"product_reference": "buildah-1:1.26.11-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.26.11-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x"
},
"product_reference": "buildah-1:1.26.11-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.26.11-1.el9_0.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src"
},
"product_reference": "buildah-1:1.26.11-1.el9_0.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.26.11-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64"
},
"product_reference": "buildah-1:1.26.11-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64"
},
"product_reference": "buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le"
},
"product_reference": "buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x"
},
"product_reference": "buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.26.11-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64"
},
"product_reference": "buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64"
},
"product_reference": "buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le"
},
"product_reference": "buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x"
},
"product_reference": "buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.26.11-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64"
},
"product_reference": "buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.26.11-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64"
},
"product_reference": "buildah-tests-1:1.26.11-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.26.11-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le"
},
"product_reference": "buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.26.11-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x"
},
"product_reference": "buildah-tests-1:1.26.11-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.26.11-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64"
},
"product_reference": "buildah-tests-1:1.26.11-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64"
},
"product_reference": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le"
},
"product_reference": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x"
},
"product_reference": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
},
"product_reference": "buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-47913",
"discovery_date": "2025-11-13T22:01:26.092452+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2414943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSH_AGENT_SUCCESS (0x06) message to requests expecting typed replies (e.g., List, Sign). The unmarshal layer produces an unexpected message type, which the client code does not handle, leading to panic(\"unreachable\") or a nil-pointer dereference. A malicious agent or forwarded connection can exploit this to terminate the client process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability was marked as Important because it allows any malicious or misbehaving SSH agent to force a crash in the client process using a single valid protocol byte. The panic occurs before the client has a chance to validate message structure or recover, which means an attacker controlling\u2014or intercepting\u2014SSH agent traffic can reliably terminate processes that rely on agent interactions. In environments where SSH agents operate over forwarded sockets, shared workspaces, or CI/CD runners, this turns into a reliable, unauthenticated remote denial of service against critical automation or developer tooling. The flaw also stems from unsafe assumptions in the unmarshalling logic, where unexpected but protocol-legal message types drop into \u201cunreachable\u201d code paths instead of being handled gracefully\u2014making it a design-level reliability break rather than a simple error-handling bug. For this reason, it is rated as an important availability-impacting vulnerability rather than a moderate issue.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-47913"
},
{
"category": "external",
"summary": "RHBZ#2414943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2414943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-47913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47913"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47913"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-hcg3-q754-cr77",
"url": "https://github.com/advisories/GHSA-hcg3-q754-cr77"
},
{
"category": "external",
"summary": "https://go.dev/cl/700295",
"url": "https://go.dev/cl/700295"
},
{
"category": "external",
"summary": "https://go.dev/issue/75178",
"url": "https://go.dev/issue/75178"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4116",
"url": "https://pkg.go.dev/vuln/GO-2025-4116"
}
],
"release_date": "2025-11-13T21:29:39.907000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T22:53:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
},
{
"category": "workaround",
"details": "No mitigation is currently available that meets Red Hat Product Security\u2019s standards for usability, deployment, applicability, or stability.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T22:53:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T22:53:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T22:53:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T22:53:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-11T22:53:25+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16102"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.src",
"AppStream-9.0.0.Z.E4S:buildah-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debuginfo-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-debugsource-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-1:1.26.11-1.el9_0.x86_64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.aarch64",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.ppc64le",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.s390x",
"AppStream-9.0.0.Z.E4S:buildah-tests-debuginfo-1:1.26.11-1.el9_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
}
]
}
RHSA-2026:16696
Vulnerability from csaf_redhat - Published: 2026-05-13 01:56 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for skopeo is now available for Red Hat Enterprise Linux 10.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. \n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:16696",
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_16696.json"
}
],
"title": "Red Hat Security Advisory: skopeo security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:36+00:00",
"generator": {
"date": "2026-07-02T13:11:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:16696",
"initial_release_date": "2026-05-13T01:56:33+00:00",
"revision_history": [
{
"date": "2026-05-13T01:56:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-13T01:56:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_eus:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.18.1-3.el10_0.1.src",
"product": {
"name": "skopeo-2:1.18.1-3.el10_0.1.src",
"product_id": "skopeo-2:1.18.1-3.el10_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-3.el10_0.1?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.18.1-3.el10_0.1.aarch64",
"product": {
"name": "skopeo-2:1.18.1-3.el10_0.1.aarch64",
"product_id": "skopeo-2:1.18.1-3.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-3.el10_0.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"product": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"product_id": "skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-3.el10_0.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"product": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"product_id": "skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-3.el10_0.1?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"product_id": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-3.el10_0.1?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"product": {
"name": "skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"product_id": "skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-3.el10_0.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"product": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"product_id": "skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-3.el10_0.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"product": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"product_id": "skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-3.el10_0.1?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"product_id": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-3.el10_0.1?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.18.1-3.el10_0.1.s390x",
"product": {
"name": "skopeo-2:1.18.1-3.el10_0.1.s390x",
"product_id": "skopeo-2:1.18.1-3.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-3.el10_0.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"product": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"product_id": "skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-3.el10_0.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"product": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"product_id": "skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-3.el10_0.1?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"product_id": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-3.el10_0.1?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.18.1-3.el10_0.1.x86_64",
"product": {
"name": "skopeo-2:1.18.1-3.el10_0.1.x86_64",
"product_id": "skopeo-2:1.18.1-3.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.18.1-3.el10_0.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.x86_64",
"product": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.x86_64",
"product_id": "skopeo-tests-2:1.18.1-3.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.18.1-3.el10_0.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"product": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"product_id": "skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.18.1-3.el10_0.1?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"product": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"product_id": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.18.1-3.el10_0.1?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-3.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64"
},
"product_reference": "skopeo-2:1.18.1-3.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-3.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le"
},
"product_reference": "skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-3.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x"
},
"product_reference": "skopeo-2:1.18.1-3.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-3.el10_0.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src"
},
"product_reference": "skopeo-2:1.18.1-3.el10_0.1.src",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.18.1-3.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64"
},
"product_reference": "skopeo-2:1.18.1-3.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64"
},
"product_reference": "skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64"
},
"product_reference": "skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le"
},
"product_reference": "skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x"
},
"product_reference": "skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64"
},
"product_reference": "skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64"
},
"product_reference": "skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le"
},
"product_reference": "skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x"
},
"product_reference": "skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.18.1-3.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
},
"product_reference": "skopeo-tests-2:1.18.1-3.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T01:56:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T01:56:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T01:56:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T01:56:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T01:56:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:16696"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.src",
"AppStream-10.0.Z.E2S:skopeo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debuginfo-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-debugsource-2:1.18.1-3.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:skopeo-tests-2:1.18.1-3.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:17040
Vulnerability from csaf_redhat - Published: 2026-05-13 13:20 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for podman is now available for Red Hat Enterprise Linux 10.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip (CVE-2025-61728)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:17040",
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17040.json"
}
],
"title": "Red Hat Security Advisory: podman security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:36+00:00",
"generator": {
"date": "2026-07-02T13:11:36+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:17040",
"initial_release_date": "2026-05-13T13:20:54+00:00",
"revision_history": [
{
"date": "2026-05-13T13:20:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-13T13:20:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:36+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_eus:10.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product": {
"name": "Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_eus:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.4.0-15.el10_0.1.src",
"product": {
"name": "podman-6:5.4.0-15.el10_0.1.src",
"product_id": "podman-6:5.4.0-15.el10_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el10_0.1?arch=src\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"product": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"product_id": "podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"product": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"product_id": "podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-remote-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.4.0-15.el10_0.1.s390x",
"product": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.s390x",
"product_id": "podman-tests-6:5.4.0-15.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el10_0.1?arch=s390x\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"product": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"product_id": "podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.4.0-15.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-6:5.4.0-15.el10_0.1.noarch",
"product": {
"name": "podman-docker-6:5.4.0-15.el10_0.1.noarch",
"product_id": "podman-docker-6:5.4.0-15.el10_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@5.4.0-15.el10_0.1?arch=noarch\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.4.0-15.el10_0.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src"
},
"product_reference": "podman-6:5.4.0-15.el10_0.1.src",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-6:5.4.0-15.el10_0.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch"
},
"product_reference": "podman-docker-6:5.4.0-15.el10_0.1.noarch",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-remote-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-tests-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux CodeReady Linux Builder EUS (v. 10.0)",
"product_id": "CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
},
"product_reference": "podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"relates_to_product_reference": "CRB-10.0.Z.E2S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T13:20:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T13:20:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T13:20:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T13:20:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T13:20:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T13:20:54+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17040"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.src",
"AppStream-10.0.Z.E2S:podman-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-docker-6:5.4.0-15.el10_0.1.noarch",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-debugsource-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-remote-debuginfo-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-6:5.4.0-15.el10_0.1.x86_64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.aarch64",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.ppc64le",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.s390x",
"CRB-10.0.Z.E2S:podman-tests-debuginfo-6:5.4.0-15.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:17084
Vulnerability from csaf_redhat - Published: 2026-05-13 15:39 - Updated: 2026-07-02 13:11A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 10.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor. Compared to libslirp, gvisor-tap-vsock brings a configurable DNS server and dynamic port forwarding.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)\n\n* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)\n\n* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:17084",
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17084.json"
}
],
"title": "Red Hat Security Advisory: gvisor-tap-vsock security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:38+00:00",
"generator": {
"date": "2026-07-02T13:11:38+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:17084",
"initial_release_date": "2026-05-13T15:39:24+00:00",
"revision_history": [
{
"date": "2026-05-13T15:39:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-13T15:39:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:38+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux_eus:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"product": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"product_id": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.8.5-2.el10_0.1?arch=src\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"product": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"product_id": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.8.5-2.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"product_id": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder@0.8.5-2.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"product_id": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.8.5-2.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.8.5-2.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"product_id": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder-debuginfo@0.8.5-2.el10_0.1?arch=aarch64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"product": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"product_id": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.8.5-2.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"product_id": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder@0.8.5-2.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"product_id": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.8.5-2.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.8.5-2.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"product_id": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder-debuginfo@0.8.5-2.el10_0.1?arch=ppc64le\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"product": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"product_id": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.8.5-2.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"product_id": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder@0.8.5-2.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"product_id": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.8.5-2.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.8.5-2.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"product_id": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder-debuginfo@0.8.5-2.el10_0.1?arch=x86_64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"product": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"product_id": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock@0.8.5-2.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"product_id": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder@0.8.5-2.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"product": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"product_id": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debugsource@0.8.5-2.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"product": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"product_id": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-debuginfo@0.8.5-2.el10_0.1?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"product": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"product_id": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gvisor-tap-vsock-gvforwarder-debuginfo@0.8.5-2.el10_0.1?arch=s390x\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64"
},
"product_reference": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le"
},
"product_reference": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x"
},
"product_reference": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src"
},
"product_reference": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64"
},
"product_reference": "gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
},
"product_reference": "gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64"
},
"product_reference": "gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 10.0)",
"product_id": "AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
},
"product_reference": "gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z.E2S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-13T15:39:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17084"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.src",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debuginfo-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-debugsource-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-6:0.8.5-2.el10_0.1.x86_64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.aarch64",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.ppc64le",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.s390x",
"AppStream-10.0.Z.E2S:gvisor-tap-vsock-gvforwarder-debuginfo-6:0.8.5-2.el10_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
}
]
}
RHSA-2026:1715
Vulnerability from csaf_redhat - Published: 2026-02-02 13:10 - Updated: 2026-07-02 13:11A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-10.1.Z:golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src | — | ||
| Unresolved product id: AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64 | — | ||
| Unresolved product id: AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le | — | ||
| Unresolved product id: AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x | — | ||
| Unresolved product id: AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64 | — | ||
| Unresolved product id: AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64 | — | ||
| Unresolved product id: AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le | — | ||
| Unresolved product id: AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x | — | ||
| Unresolved product id: AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for golang-github-openprinting-ipp-usb is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "HTTP reverse proxy, backed by IPP-over-USB connection to device. It enables\n driverless support for USB devices capable of using IPP-over-USB protocol.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:1715",
"url": "https://access.redhat.com/errata/RHSA-2026:1715"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_1715.json"
}
],
"title": "Red Hat Security Advisory: golang-github-openprinting-ipp-usb security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:40+00:00",
"generator": {
"date": "2026-07-02T13:11:40+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:1715",
"initial_release_date": "2026-02-02T13:10:53+00:00",
"revision_history": [
{
"date": "2026-02-02T13:10:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-02-02T13:10:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:40+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"product": {
"name": "golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"product_id": "golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb@0.9.27-4.el10_1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ipp-usb-0:0.9.27-4.el10_1.aarch64",
"product": {
"name": "ipp-usb-0:0.9.27-4.el10_1.aarch64",
"product_id": "ipp-usb-0:0.9.27-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb@0.9.27-4.el10_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"product": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-4.el10_1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"product": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"product_id": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-4.el10_1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"product": {
"name": "ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"product_id": "ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb@0.9.27-4.el10_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"product": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-4.el10_1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"product": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"product_id": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-4.el10_1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ipp-usb-0:0.9.27-4.el10_1.s390x",
"product": {
"name": "ipp-usb-0:0.9.27-4.el10_1.s390x",
"product_id": "ipp-usb-0:0.9.27-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb@0.9.27-4.el10_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"product": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-4.el10_1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"product": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"product_id": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-4.el10_1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ipp-usb-0:0.9.27-4.el10_1.x86_64",
"product": {
"name": "ipp-usb-0:0.9.27-4.el10_1.x86_64",
"product_id": "ipp-usb-0:0.9.27-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb@0.9.27-4.el10_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"product": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"product_id": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openprinting-ipp-usb-debugsource@0.9.27-4.el10_1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64",
"product": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64",
"product_id": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ipp-usb-debuginfo@0.9.27-4.el10_1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src"
},
"product_reference": "golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64"
},
"product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le"
},
"product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x"
},
"product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64"
},
"product_reference": "golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-0:0.9.27-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.aarch64"
},
"product_reference": "ipp-usb-0:0.9.27-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-0:0.9.27-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.ppc64le"
},
"product_reference": "ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-0:0.9.27-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.s390x"
},
"product_reference": "ipp-usb-0:0.9.27-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-0:0.9.27-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.x86_64"
},
"product_reference": "ipp-usb-0:0.9.27-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64"
},
"product_reference": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le"
},
"product_reference": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x"
},
"product_reference": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"relates_to_product_reference": "AppStream-10.1.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64"
},
"product_reference": "ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64",
"relates_to_product_reference": "AppStream-10.1.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.x86_64"
],
"known_not_affected": [
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-02-02T13:10:53+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:1715"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-0:0.9.27-4.el10_1.src",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:golang-github-openprinting-ipp-usb-debugsource-0:0.9.27-4.el10_1.x86_64",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:ipp-usb-0:0.9.27-4.el10_1.x86_64",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.aarch64",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.ppc64le",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.s390x",
"AppStream-10.1.Z:ipp-usb-debuginfo-0:0.9.27-4.el10_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
}
]
}
RHSA-2026:17446
Vulnerability from csaf_redhat - Published: 2026-05-20 11:57 - Updated: 2026-07-02 13:11A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.18.42 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container\nPlatform 4.18.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.18.42. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHSA-2026:17448\n\nSecurity Fix(es):\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url\n(CVE-2025-61726)\n* crypto/x509: golang: Denial of Service due to excessive resource\nconsumption via crafted certificate (CVE-2025-61729)\n* pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed\nRELATIVE-OID (CVE-2026-23490)\n* golang: archive/tar: Unbounded allocation when parsing GNU sparse map\n(CVE-2025-58183)\n* golang: archive/zip: Excessive CPU consumption when building archive\nindex in archive/zip (CVE-2025-61728)\n* crypto/tls: crypto/tls: Incorrect certificate validation during TLS\nsession resumption (CVE-2025-68121)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:17446",
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2430472",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430472"
},
{
"category": "external",
"summary": "2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17446.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.18.42 packages and security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:42+00:00",
"generator": {
"date": "2026-07-02T13:11:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:17446",
"initial_release_date": "2026-05-20T11:57:59+00:00",
"revision_history": [
{
"date": "2026-05-20T11:57:59+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-20T11:57:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.18",
"product": {
"name": "Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.18::el8"
}
}
},
{
"category": "product_name",
"name": "Ironic content for Red Hat OpenShift Container Platform 4.18",
"product": {
"name": "Ironic content for Red Hat OpenShift Container Platform 4.18",
"product_id": "9Base-RHOSE-IRONIC-4.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_ironic:4.18::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-11.rhaos4.18.el8.src",
"product": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.src",
"product_id": "podman-5:5.2.2-11.rhaos4.18.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-11.rhaos4.18.el8?arch=src\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "python-pyasn1-0:0.5.1-4.el9.src",
"product": {
"name": "python-pyasn1-0:0.5.1-4.el9.src",
"product_id": "python-pyasn1-0:0.5.1-4.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pyasn1@0.5.1-4.el9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_id": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-11.rhaos4.18.el8?arch=x86_64\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_id": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-11.rhaos4.18.el8?arch=aarch64\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_id": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-11.rhaos4.18.el8?arch=ppc64le\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_id": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-11.rhaos4.18.el8?arch=s390x\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"product": {
"name": "podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"product_id": "podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@5.2.2-11.rhaos4.18.el8?arch=noarch\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"product": {
"name": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"product_id": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pyasn1-doc@0.5.1-4.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"product": {
"name": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"product_id": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-pyasn1@0.5.1-4.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"product": {
"name": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"product_id": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-pyasn1-modules@0.5.1-4.el9?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.src as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src"
},
"product_reference": "podman-5:5.2.2-11.rhaos4.18.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch"
},
"product_reference": "podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64"
},
"product_reference": "podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le"
},
"product_reference": "podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x"
},
"product_reference": "podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.18",
"product_id": "8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
},
"product_reference": "podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pyasn1-0:0.5.1-4.el9.src as a component of Ironic content for Red Hat OpenShift Container Platform 4.18",
"product_id": "9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src"
},
"product_reference": "python-pyasn1-0:0.5.1-4.el9.src",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pyasn1-doc-0:0.5.1-4.el9.noarch as a component of Ironic content for Red Hat OpenShift Container Platform 4.18",
"product_id": "9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch"
},
"product_reference": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-pyasn1-0:0.5.1-4.el9.noarch as a component of Ironic content for Red Hat OpenShift Container Platform 4.18",
"product_id": "9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch"
},
"product_reference": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch as a component of Ironic content for Red Hat OpenShift Container Platform 4.18",
"product_id": "9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
},
"product_reference": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T11:57:59+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T11:57:59+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T11:57:59+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T11:57:59+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T11:57:59+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-23490",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-16T20:03:33.790513+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2430472"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
],
"known_not_affected": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-23490"
},
{
"category": "external",
"summary": "RHBZ#2430472",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430472"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-23490",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23490"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23490",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23490"
},
{
"category": "external",
"summary": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970",
"url": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970"
},
{
"category": "external",
"summary": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2",
"url": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2"
},
{
"category": "external",
"summary": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq",
"url": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq"
}
],
"release_date": "2026-01-16T19:03:36.442000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T11:57:59+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/",
"product_ids": [
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17446"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.src",
"8Base-RHOSE-4.18:podman-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-catatonit-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-debugsource-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-docker-5:5.2.2-11.rhaos4.18.el8.noarch",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-gvproxy-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-plugins-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-remote-debuginfo-5:5.2.2-11.rhaos4.18.el8.x86_64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.aarch64",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.ppc64le",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.s390x",
"8Base-RHOSE-4.18:podman-tests-5:5.2.2-11.rhaos4.18.el8.x86_64",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.18:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.18:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID"
}
]
}
RHSA-2026:17547
Vulnerability from csaf_redhat - Published: 2026-05-14 11:46 - Updated: 2026-07-02 13:11A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64 | — |
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64 | — |
Workaround
|
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64 | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Data Foundation 4.18.20 security, enhancement \u0026 bug fix update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation 4.18.20 security, enhancement \u0026 bug fix update\n\nFIXED BUGS:\n==========\nDFBUGS-6235: [4.18] [ROSA HCP][UI blocker] Broken Storage System wizard\nDFBUGS-6185: ocs-operator should not use image gcr.io/kubebuilder/kube-rbac-proxy\nDFBUGS-6172: RHODF 4.18.20\nDFBUGS-5939: Backport to odf-4.18.z [External Mode]: noobaa-default-backing-store is in creating state due to \"CheckExternalConnection Status=UNKNOWN_FAILURE Error=SELF_SIGNED_CERT_IN_CHAIN\"",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:17547",
"url": "https://access.redhat.com/errata/RHSA-2026:17547"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17547.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.20 security, enhancement \u0026 bug fix update",
"tracking": {
"current_release_date": "2026-07-02T13:11:46+00:00",
"generator": {
"date": "2026-07-02T13:11:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:17547",
"initial_release_date": "2026-05-14T11:46:25+00:00",
"revision_history": [
{
"date": "2026-05-14T11:46:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-14T11:46:37+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Openshift Data Foundation 4.18",
"product": {
"name": "Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.18::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Openshift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045210"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3Abfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778044961"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256%3Aa33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047963"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3A04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045359"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045374"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"product_id": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256%3Afad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047967"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3A371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045472"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256%3A7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047972"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3Aab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3Adb24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045524"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"product_id": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256%3A6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047973"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3Abf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045587"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3Ad9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045627"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045731"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256%3Ad64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047978"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3A2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"product_id": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-dependencies-operator-bundle@sha256%3A558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047981"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046234"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3Ae8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256%3Aef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047981"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3A85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045858"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"product_id": "registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256%3A2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047982"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"product_id": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256%3A6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047995"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"product_id": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256%3A02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047998"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"product_id": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256%3Ac3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047999"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3Aa249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"product_id": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256%3A07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778047999"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046079"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"product_id": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256%3A92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778048002"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3Ace15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045210"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778044961"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3A6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045359"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045374"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3Ab423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045472"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3Aec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3Ade408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045524"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045587"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3A1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045627"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045731"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3A87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3Ad6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046234"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3A7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3Ac7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045858"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046079"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045210"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778044961"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3Af6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045359"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045374"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3A4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045472"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3Ae33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045534"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3Adc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045524"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3Adb8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045587"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3A049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046067"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045627"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045731"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3Aa22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046234"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3Aeda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3Aff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045858"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3Afc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045931"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778046079"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778044961"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045374"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045472"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045524"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045587"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3Ae6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045731"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3A098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3Ac987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045792"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3A88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045858"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778045931"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64 as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x as a component of Red Hat Openshift Data Foundation 4.18",
"product_id": "Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.18"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:46:25+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.18/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17547"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:46:25+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.18/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17547"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:46:25+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.18/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17547"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:46:25+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.18/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17547"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:a33a373914b9eb2ea271e8b3301598d0bb3fb98a782ad702f192d9bd1ff4c3a1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:46748251be5edd0f4f95c428805ab301d780a53c0b971b29320022cb419e617c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:90dbb2d2ceb32e43f0c6cace5577b334ff24668c2ccc856021c8783f080afeee_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:9cfaf068461013f6a57f35eba7569a5fbc547d44f7d41fba8b66a1ab54dfefbf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:bfb9d3a0a263b4df2ec5f3b8ec50005908e1d53cdb79a4cf0f47549f175fd8c5_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:4fa3d35d6a129ff865be3cb7d0ed8a8a1d7171e447d3c7a24eb80321ebfb5c09_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:617e508dec70b2a6c487ca529121c84a2d84c0c3de0093c153d37b744a1e9422_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/cephcsi-rhel9@sha256:ce15dfc0be507039379451792186dfef6b203c8243e1931886344006f2a9d565_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:04bb02437d6202fe5ed384d626dd0953f70689f68cd71a0d027ccb80fbcee64f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:6620c020e6706ebfb7a4267dcc0106f913d37f7274af1c21dab5096bf1b9dc31_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-core-rhel9@sha256:f6df78dce17d45a8d8160895d03da954443904f7a3d0211ffb1973fc9375ce88_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-operator-bundle@sha256:fad44ef494f51a96438fe77c3bbdf3a1175057504293103edb49b1bbdcfceae8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3b1f9772e8ffba1d4cc664fbec3a7c43b13887d0dddaa33a7f3412529c94a379_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:3e8979947f6eed5d98a84b708a776bbb6d5948b83c8fdfad79f5e8238cdb6988_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:56323010958a7a0b769d363cce7ba224bed26db91d9e9149624e5658d098d8f0_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:883a1e88a497e6c04e5079f2f698c12901f07577e02ba1fd003c5171581687f7_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:371c2ab993d019f1389d32f97a3ce88e5b80a5f89a21a4344f8be2035b0a101d_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:4353b412c55a8891f7fbc4129343cc923b3f9d926f5409833ac6c30db33a9156_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:b423a54741e203c436d711b38ee96a096a3c318a53a8623a6df1bec1b6f1b470_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:7c0ba4f6576b19ab7282686998e768a2862e8e84825d6c117e2397c1a35dd69f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:470404644ec1f361908e5297b6f423a89ba3cca23d4d5d3bcb4a64b397fe9ecf_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:7eca67fe1b479eafe4f20cc92f30147f2391ea71e920edae7b738c448fa47aed_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:81233957911937ee5f92451c000ea74632017a67ffe1763d6f8ec2e31b4c8177_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:8c963cf57c9bd34720cabdefdff27f6489116fff47ff213eeea80e187e230503_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ab213ac11247b14abc62ef19c4d5b3ec0bba8f5b2b64d40511b3563e38beee0f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:e33377b818b1dd9879d5beb5133ec7b0d06310dee9e8959e5381169254a5303a_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ec4a752f159c7e8e49eecc57f54093f6bcf7c9094e67172643336c1fce443a92_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-operator-bundle@sha256:6025f18fc328f63338f1141e67bcd265d977d6b7ea27058c8bcc2c3a61963063_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:08577b1c1c19e28ccf2a8869763ac00a4989ad788f996a15f3f43f37e592144d_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:db24a8872b11b037d3fe3f4668d647581ac4616056ec0b6c4e4eb43f99103a12_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:dc18e6116cc971b488a970d9f26a7100cfdd4b2b6c954911871ccbf3e5f35497_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:de408884837ef1d376953d3ba8e3aaa239010d81dbd003691d3fcbfdaa0173a3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:130b51d933da64ad628e90256ac9078f40f5f1731790e6e10ec2121896301a4c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:1394eac1737349543479874581d70c4d899c65be4d5d40e8fb67719ac804805c_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:bf38e6ffae553be8e1461a8260bd3643f47cc0fafc7763a11c17e3d431346ca4_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cli-rhel9@sha256:db8c3c8cbd0f13862a57f23a33437bec9b8abf096a21bc391d33ee9ec9f009be_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:049dbc959f598e9930f5914917917cc37adeac0e46db91304ab0a80af69c29e9_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:1d21b0d6a7c8cbe06432584f6d7561b7d0164837c2da3fbd35f4c48f76cbcdc3_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-console-rhel9@sha256:d9b564b1db00799969478cea93430d2bf235186300bf3e064366e93857a9ead1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:61dea3bf0cbdd0bad6ca4b7d75d0786af505d3b0b72571caf1252ebc67c4cd01_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:67a0369ac2db433dbbce36449dc773197a46545e7236eab3ca2b29570d75e9f2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:6eff18745e52801a8bc8dab90ce3306308d8e750dd34b4addbd40b6aea7b7d13_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:d64f2f778ec16206e4020f327a9e92372dd3dc60004c31cd7ace3bf98ab50a2e_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:24dd21d060a2ad6499c40b35d24e0a213480613a0b025ba1b8fdd0aac1fb7615_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:3a1025441992212cf9c1aa0fdbaa4a8915f507770702f1076f69f1be901e6283_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:5872dc8964de563f3cc99613327641e87fd4e349f93f1b6aff6de8b80329cf33_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:e6658b2b3624a0217622a9dfbde1a545ea2c4b23255c994ad053574a759c1732_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:098ff956773f197e9bca0184ce40d95c91e152409259671509ce599ea9a7ba48_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:2b5d850dec6b70c33775b93cd5b78ea29126b98a339314b5eaa8f184ad24480f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:87aa55aaffdbe9bdcfc2d45a961dea50ed23762eaf7914be8aa3c9121f034bfa_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:a22e1ecf7eb3249620ba9d21ea23a657dcce2684c8b62fbb282039acd26e7b7b_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-dependencies-operator-bundle@sha256:558965991ee19a601e2fe7fcbb6939c752a7188e5a0c087635f93a24f823e814_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:2603c7829a98a1ebca680b13c02a5c18ded0e27731491bd809c13d7b0d94c372_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:377934d6e8f287fbb0db886b74b7f8d57c7a3c5aec5e92dda3dd92a61484f0c8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:d6dd5f0b4704aa54cb12bd16b22ccace3b435b473bd5dba5fe90f57b10dc7ff2_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:ef6718a76ec9daddec7a0ae42634c927552ec6f0f5745ad2fe27d9782a128cb8_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7447af3378e071997edf2281f3985b132fcfccb4a2d5b8c4ac85fff3df7097b4_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c987206b838433271788faa35539f1709e8e5811a244e4555456f930da1a286f_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:e8b6bc30a149c2a726c2105b943a835525c2817932bb180c275efeef9595b178_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:eda936b1f7d1ea5f82248f38c437748dbf5bb569f2d4f342fde000815144d8b5_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:85993de0ef7dac3d128afec3ff4486d2a7032727c50a644406d6329801c70822_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:88a2b71d81bf338e121cfa10005687b0239bc060dac7b27a237f1c8c5d89be06_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:c7061f74c4096f5f7523cb660447ac3fd1fb2c0ee689a8b45592c0289a537c7c_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:ff507d76ad27b0e8cc110ba17b984eac410be92dd7a8abe41cb9ef35a9d703d2_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-operator-bundle@sha256:2c40486e9c1f851881dcf707b3566eab01032da9959be55822b935e7958ba229_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:6fdb82ba9aca56ec5a9a90b5745e80424f386fb298e1315479725d755bb7818b_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0a8a6e42943be25153f6de778a1070579817292addb90eeb7c7550eb97fd9498_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:0d9b556ffacfddfd2b23d16ecddc154c05c25bfee0cd854699e8fcb59989f165_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:2eedc191fee7f433a5456642ec866e956c308bce8f5694380ab21c0050e9ecb8_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odf-rhel9-operator@sha256:86375669e6973e765e85d8a4429718432e7bdd12cf046d1a6f6d71822b65eda3_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:02b1578548ba0c024013a4ac7029779da43cc0e5079d949823f82652582ffacd_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:c3a32aee822fb37a5e6dc3b7f56803575a93edab363c3d494e00bea7b6da485f_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:07b118f7ef86facd65b189aa6a97ea745340ca7eb50cbc68f5d576657b6b8d96_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4eb218ba3fcd2f462b67f78db9517ada3ac3c35caf5b1d68f94d276f7a7acdbf_arm64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:611924fea133ee7818505d6e33d2a308e62f5a3d69c115c4956beb99865fe2eb_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:a249096a74cfcea9853aeb140db25c22d2169a7abd98412fb51de37c464131d1_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/odr-rhel9-operator@sha256:fc748f43ad1fa8e6b8e4b3eb74ff5eb728cc2e605ed4067740ab2edec806fa26_s390x",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:92c6b922006d79a476e0f4a04bf04495f12d9ecf8653fa7274cfb0c3481c3630_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:5f7f9d50839445cf74eaeeaaa19a7abc72c6149eb4886c4558caae933ad425ae_ppc64le",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:8c57b16bc05880e2497b6013803e0a8d5a9070abdd01e1bbec0655125b540a3a_amd64",
"Red Hat Openshift Data Foundation 4.18:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:9b2a8eedc72619f5ca7cbbe6a8d54735494bd66eb57f3fb899d67187d2a43892_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:17550
Vulnerability from csaf_redhat - Published: 2026-05-14 11:50 - Updated: 2026-07-02 13:11A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64 | — | ||
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64 | — |
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64 | — |
Workaround
|
A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64 | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Data Foundation 4.17.24 security, enhancement \u0026 bug fix update",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation 4.17.24 security, enhancement \u0026 bug fix update\n\nFIXED BUGS:\n==========\nDFBUGS-6194: Backport to odf-4.17.24 ocs-operator should not use image gcr.io/kubebuilder/kube-rbac-proxy\nDFBUGS-5943: Backport to odf-4.17.z [External Mode]: noobaa-default-backing-store is in creating state due to \"CheckExternalConnection Status=UNKNOWN_FAILURE Error=SELF_SIGNED_CERT_IN_CHAIN\"",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:17550",
"url": "https://access.redhat.com/errata/RHSA-2026:17550"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33036",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-4800",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/",
"url": "https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17550.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.24 security, enhancement \u0026 bug fix update",
"tracking": {
"current_release_date": "2026-07-02T13:11:47+00:00",
"generator": {
"date": "2026-07-02T13:11:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:17550",
"initial_release_date": "2026-05-14T11:50:33+00:00",
"revision_history": [
{
"date": "2026-05-14T11:50:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-14T11:50:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Openshift Data Foundation 4.17",
"product": {
"name": "Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Openshift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3Afb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049594"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"product_id": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-operator-bundle@sha256%3Ae1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061396"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3Ad7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049745"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3Ab7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049753"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"product": {
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"product_id": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256%3A97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061397"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3A1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050558"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3Aa58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049818"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"product_id": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256%3A42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061397"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3A42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049878"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049920"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"product": {
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"product_id": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256%3Ab1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061401"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3Ab1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778060364"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050037"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050035"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256%3Ab4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061412"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3Ab3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050048"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3Ac83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050508"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3A7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256%3A756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061413"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3A6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778059723"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"product_id": "registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256%3A1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061414"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"product": {
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"product_id": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256%3A5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061419"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"product_id": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256%3Ae4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061423"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"product_id": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256%3A75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061427"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"product": {
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"product_id": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256%3A12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061431"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3Aa97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050482"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"product_id": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256%3A45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375?arch=amd64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778061434"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049594"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3Aed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049745"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3Af21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049753"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3Aa50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050558"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3A448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049818"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3A2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049878"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3Abf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049920"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3Abfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778060364"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3A9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050037"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3Af2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050035"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3Afbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050048"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050508"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3Ac63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3A6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778059723"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050482"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256%3A5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049594"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"product": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"product_id": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256%3Ab3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049745"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3A044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049753"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"product_id": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256%3A43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050558"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3Aa9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049818"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"product_id": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256%3Aebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049878"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049920"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"product_id": "registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256%3A62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778060364"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"product_id": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256%3Ad1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050037"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3A46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050035"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3A4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050048"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"product_id": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256%3A02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050508"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3Af8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3A16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3A40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778059723"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3A20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050352"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"product": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"product_id": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256%3A44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e?arch=s390x\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050482"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"product": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"product_id": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9-operator@sha256%3A20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049298"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"product": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"product_id": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256%3Afa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049753"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"product_id": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256%3Af81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049818"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"product": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"product_id": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256%3A9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049920"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"product_id": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256%3A944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778049945"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256%3Aeb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050035"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"product_id": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256%3Ae990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050048"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"product_id": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256%3A93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050119"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"product_id": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256%3Ada895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050290"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"product": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"product_id": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256%3Ac0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778059723"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"product": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"product_id": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256%3Ac36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8?arch=arm64\u0026repository_url=registry.redhat.io/odf4\u0026tag=1778050352"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64"
},
"product_reference": "registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64"
},
"product_reference": "registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64"
},
"product_reference": "registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64"
},
"product_reference": "registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64 as a component of Red Hat Openshift Data Foundation 4.17",
"product_id": "Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
},
"product_reference": "registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64",
"relates_to_product_reference": "Red Hat Openshift Data Foundation 4.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:50:33+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17550"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2026-4800",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-03-31T20:01:21.918257+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2453496"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in lodash. The fix for CVE-2021-23337 added validation for the variable option in _.template but did not apply the same validation to options.imports key names. Both paths flow into the same Function() constructor sink. Additionally, _.template uses assignInWith to merge imports, which enumerates inherited properties via for..in. If Object.prototype has been polluted by any other vector, the polluted keys are copied into the imports object and passed to Function().",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "lodash: lodash: Arbitrary code execution via untrusted input in template imports",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "In the context of Red Hat Enterprise Linux, the grafana and grafana-pcp packages execute the affected JavaScript entirely client-side within the user\u0027s browser. Consequently, the attack surface is strictly restricted to the local browser environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-4800"
},
{
"category": "external",
"summary": "RHBZ#2453496",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2453496"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-4800",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-4800"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-4800"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
"url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm"
},
{
"category": "external",
"summary": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c",
"url": "https://github.com/lodash/lodash/commit/3469357cff396a26c363f8c1b5a91dde28ba4b1c"
}
],
"release_date": "2026-03-31T19:25:55.987000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:50:33+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17550"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "lodash: lodash: Arbitrary code execution via untrusted input in template imports"
},
{
"cve": "CVE-2026-33036",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-03-20T06:02:18.306021+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449458"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-xml-parser. A remote attacker can exploit this vulnerability by supplying specially crafted XML input containing numeric character references or standard XML entities. This input can bypass configured entity expansion limits, leading to excessive memory allocation and high CPU usage. The primary consequence is a Denial of Service (DoS), which can crash the affected process.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33036"
},
{
"category": "external",
"summary": "RHBZ#2449458",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449458"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33036",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33036"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33036"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/bd26122c838e6a55e7d7ac49b4ccc01a49999a01"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/releases/tag/v5.5.6"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-8gc5-j5rx-235r"
}
],
"release_date": "2026-03-20T05:17:03.290000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:50:33+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17550"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"known_not_affected": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-14T11:50:33+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.17/html/updating_openshift_data_foundation/updating-ocs-to-odf_rhodf",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17550"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-operator-bundle@sha256:e1e94238c48cf0825c63eab6b5186a5b5909ce914a6fe9e4276b00dc51000342_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:20f88c5159c3ca97a84194252106e6b2ca97ded0184dc0057c60c28134b1e589_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:29ad7563856cdc04126578be6f41dd24eb83ba75bddc2822a904b645fe25e293_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:5e62a3f28898f10e83225c9f7ddc3413f46dc34f3f448a6a2455462dd462462a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9-operator@sha256:62ee344c5b7a746bebcb381f03692a3e5d20584d781258d57233f47f59b4573d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:3c0ac0bdb556bd3719ac18d14517b1ad11e9e8983008210e606da9dd394a2407_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:5711032f312ea77d5a20c4b6807819a711f342641f9a51a97cd6f1b8b07c181b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/cephcsi-rhel9@sha256:fb680524a86a4cc726206fdd569679a036fc4bc3c156ddc2aeb805b820344e99_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:b3cfe9371ec763aed9971f78e6676538b28a19be0549b2980d220942793f6505_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:d7802243beba8ee84a7ac864a7bcc2d185ccb132d75771e880feb95a4901bae8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-core-rhel9@sha256:ed197ff1eea1822803fe8ab17089fac8517289a88b8cabc13d9a04154b6429a7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-operator-bundle@sha256:97e5697d81ec7511d36b8341f97b70b29a5dcabd643532a73b48cb90a00c5c88_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:044cd5930acccd2bf8011aa9037bda35b2626b36a68e54aa1a7a20da8f80a8b0_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:b7b4cefd861b350aaae8fe0a615994a4a23e23ea525b0c69c68397fe02bdb93c_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:f21de39a12f03de483a9a430f54f80748262cfb5d8d0a1615a494020c7bac911_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/mcg-rhel9-operator@sha256:fa13305c8b0057a6b888cdbb9e9285ed6e99fa25a4c9f7403b4b1349d28a7d18_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:1938479d4e00f6ca6aae09cab8abf9fb07b3de4803cb252158114b06bbdcd20f_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:43d53ed7be0ee57764006cbe32daf2ed128775c0e253733d459f35d9c496a738_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-console-rhel9@sha256:a50944202253582f24fbf7044c9b499c15577fe95fd4c1c515582dfe7d842456_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-operator-bundle@sha256:42f9229dc188270388550e99f58035d0f203fbce0db6dee7545bb71274f2802b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:448a820dadedc585a0d04fcb8273a961402ca02851bf12524292bc56a48a1e12_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a58a402cab7a62b1b5c5bba6988237b2a70aa9b4fcb234a6ab12609123d60957_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:a9c6d453107b8bb38cbce77addbf38837e7839203620de16c4d03d8f172ad454_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-client-rhel9-operator@sha256:f81e6e610d394889eedb0a3384a98cde0b1517c30449f61e8a9c4262b3feb280_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:2560c180ff73220736e35dacc801f7588686721eb6553690fe412de40ec52fa6_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:42c4e23a44979298bed46c87eab5a9ad8aae566d80d11c91bd8bbcd15df67aee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-metrics-exporter-rhel9@sha256:ebd5b7a448110d8993cf612a07313740cfd6fddc0d47ff94c35355aefd94ec1b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-operator-bundle@sha256:b1c0738f90a82094d9fbeb4fd00df09dad37e09015380684b14deaf3b3f4abee_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:32e4c45d9a01ef921a014b72e08a28f7bbaaeb658ca0bc0362a8777df44d5219_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:3c8bf07c157fd1db46e3a9d9f8ae9e5da1a229bd80ec94b1ba19b5ce6589dced_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:9c181d49a8ebb48e6be1e9ad69fc14c2dacb4ca5afcb9119ef8b4d73479cc054_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/ocs-rhel9-operator@sha256:bf5eee91b10d4a208da834f6490849c52aeec0205009cd37251bb1e1327f4dc1_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:2f158a2020576c694c511a42b3a7bcc7d53ed8de5fc3db4274f120ed0110bb55_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:36fb3a46b0b20c0f9ae7ba5e56f52ba86df09d775852421e2e28b7b18c9f119a_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:88b7749d20969a1b03e4d11abfe525aa975e6da6017619463c576ea6e3d7f0c3_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cli-rhel9@sha256:944408fdc16a72f8e3e3ec9299e29891b9025009c35433bbf006b4dec5b3d26f_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:62f3d84161ffbc03685ebd5ef607e06024a72e808708a77fb192dddfd1bdc067_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:b1cdce0115f9b4fb5efab9174d9200faaf2d14a20abaa2af7bfa072f39c8f135_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-console-rhel9@sha256:bfe7edcec4550648fafc9b4f88d1986d852e7464095a68f87e4f90136627bfd7_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:033aae54d1b38986317aad59ddc54484bc5f5646d942bd7e3e6b8557923b0086_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:9b9bc9d73f02148f69433fd5a286f4deaab18b1bc7fe5eb98d7fe8296ac0b68d_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-cosi-sidecar-rhel9@sha256:d1bf19fcc708b359cbea5002792e7d66952e609aae33349bcdb9cfe7058230de_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-operator-bundle@sha256:b4455ef6e61dc46ce87dd75a9f8322d908d19b0b7105bb8624d3737dd4014dec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:13d85155a28478fc076c24cc26de5aa9077e34e74949dff67ad204cc82d0dbb4_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:46bad0253d9131ee06f6330ee90a8ec8f4f007377574e8d566599fc4119a5364_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:eb250c996ada121a33a8c43d2337a37953593f4f59d5d2f3e576765d8b4b39a4_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-rhel9-operator@sha256:f2b06142ad64178516aff97c80e115ef7723dc8e6a5d2c02a1d648e4edf1bf93_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:4faaf3e38d490bc4fb0c319c9925eb67b28ffd8fb0f386180117f34dd0699178_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:b3c912f658eb3ae234609cefd2f1e3f250e586c04eea6d53c42011a85e502db1_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:e990b3911138480cf0911f66cfb80def4800c56c58c0afe8d4ece6c8499cfa28_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9@sha256:fbd7e358030b614ee6dbbabeba0f77cf7067ab7e1caa7019a543bde62f4aab78_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:02a6e80e70df1fb3e5969a1b2f710bed1533b1ced001284877b2a30827311e19_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:26ad056b8dc2f2dced8f79914945a3aa93b09f19ad082962c2a9a07ad5897f19_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-console-rhel9@sha256:c83ca8a9cfd28fb5169adb54a17c8f93d179f5be28219eb570b3d7894b580132_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-operator-bundle@sha256:756be478d36195abdd6a03f6c8e534003ad700906644fe4f73ae46f1d210ce0b_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:7fa730a5f8aa90cec6e935056a26cb87ae09ff65a0350810b741b4e397d83bd5_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:93ce52d52a8ce8ca218b9f94e0fc058f8ed053821069900d9e9ec3ded8033ec8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:c63ee1d50a9ec18ca89111715879942beb3479e34db35a8ff49ff3ab51e7a7a3_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-multicluster-rhel9-operator@sha256:f8ebb04006224a17d0edf1ffe1052856e4494fcee799f30e143a74db3fdf66bc_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:16b1ff997a05098d1f4bb4d6aa2d2164764bae0c58631c2681a7357a7aba7f53_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6a8ec1c1f33207968899cbddb6c51f8753403c9f98efd12a1b7b286127839d84_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:6c1a29548cddef1baba681d3fbbef53013b3c258ea4c57ce9d3df2a9c23e23cd_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-must-gather-rhel9@sha256:da895f367c34cf962fae175b064dafdb8d5fbbe580f06d06035146f52d39ab55_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-operator-bundle@sha256:1559a5e22051376d22c0191042f20f6aa7321ade446f7eb4dfd209f0890ffaa2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-prometheus-operator-bundle@sha256:5085dda54bca703d61461ba3acf1fc3cf231214744c81b7254e674645616d8ec_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:147abcdd67177c615a9d9cec06647de9672795e68d1d83e7c99379bc5eed1573_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:26f64e6d5a4c62122bc0fce6f635557d9252c7c86cd3e8733acf840bf407c8fc_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:40b4eda8553cfbb1c1c09ee2fd492009fc9864a27e3c01db9fbecf61381b3674_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odf-rhel9-operator@sha256:c0179a7e4d890ae2e301c8710f8e4388b28f3ac2740494dab2ea8d05ac2bb9f0_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-cluster-operator-bundle@sha256:e4363a32d7ee6c68fd008c7bbf7115b303ebb7ba66c2ae8ca05c95d7604344b2_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-hub-operator-bundle@sha256:75d23f1de13693947431b8fd7975da4fe15a1551b9c71322ecba97144d33b959_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-recipe-operator-bundle@sha256:12af9d8f69d966b2184e5002fd1e2a768c85beaa90d4a4b31b78af8197f9c309_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:20b8c6df88b9589864c4656c1759b658f1f1320754276fcf2c6214917f5e6c7b_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:4831f857a1b8dd76deba550368c2dfeebf5e17d1d8dafec4bf0f1c409623d9f8_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:783be53aab957e03b91fd708465d1542d540dae64e7d212e4ca12ac3a253ad09_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/odr-rhel9-operator@sha256:c36d10e6e088b338a192a50e7c5d21c94d64778f557240eca26827c352730fb8_arm64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-operator-bundle@sha256:45f296c46471c68ecd98bef214a2ada27ca375d314f53ec06e439d0b0d7f3375_amd64",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:44e05a9a17405f1bd8d8fa2c6d14f98e5b83222765d1bec09621b3412ca80b9e_s390x",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:6625a2e1d89af0c1337deddf38a11149164ce502e30f4f3bcfd8d8a97122e6f9_ppc64le",
"Red Hat Openshift Data Foundation 4.17:registry.redhat.io/odf4/rook-ceph-rhel9-operator@sha256:a97e3ce86378dd37f9deecff66408a7258977ca37dc53926f1fbee0114a12693_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:17595
Vulnerability from csaf_redhat - Published: 2026-05-20 13:36 - Updated: 2026-07-02 13:11A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Workaround
|
A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x | — | ||
| Unresolved product id: 8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x | — | ||
| Unresolved product id: 9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.17.54 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container\nPlatform 4.17.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.17.54. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHSA-2026:17598\n\nSecurity Fix(es):\n\n* golang: net/url: Memory exhaustion in query parameter parsing in net/url\n(CVE-2025-61726)\n* crypto/x509: golang: Denial of Service due to excessive resource\nconsumption via crafted certificate (CVE-2025-61729)\n* pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed\nRELATIVE-OID (CVE-2026-23490)\n* golang: archive/tar: Unbounded allocation when parsing GNU sparse map\n(CVE-2025-58183)\n* golang: archive/zip: Excessive CPU consumption when building archive\nindex in archive/zip (CVE-2025-61728)\n* crypto/tls: crypto/tls: Incorrect certificate validation during TLS\nsession resumption (CVE-2025-68121)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:17595",
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2430472",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430472"
},
{
"category": "external",
"summary": "2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_17595.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.17.54 packages and security update",
"tracking": {
"current_release_date": "2026-07-02T13:11:48+00:00",
"generator": {
"date": "2026-07-02T13:11:48+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.1"
}
},
"id": "RHSA-2026:17595",
"initial_release_date": "2026-05-20T13:36:25+00:00",
"revision_history": [
{
"date": "2026-05-20T13:36:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-05-20T13:36:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-02T13:11:48+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Ironic content for Red Hat OpenShift Container Platform 4.17",
"product": {
"name": "Ironic content for Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-IRONIC-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_ironic:4.17::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.17",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.17::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.17",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.17::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "python-pyasn1-0:0.5.1-4.el9.src",
"product": {
"name": "python-pyasn1-0:0.5.1-4.el9.src",
"product_id": "python-pyasn1-0:0.5.1-4.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pyasn1@0.5.1-4.el9?arch=src"
}
}
},
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el9.src",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.src",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el9?arch=src\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el8.src",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.src",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el8?arch=src\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"product": {
"name": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"product_id": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pyasn1-doc@0.5.1-4.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"product": {
"name": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"product_id": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-pyasn1@0.5.1-4.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"product": {
"name": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"product_id": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-pyasn1-modules@0.5.1-4.el9?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"product": {
"name": "podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"product_id": "podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@5.2.2-18.rhaos4.17.el9?arch=noarch\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"product": {
"name": "podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"product_id": "podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@5.2.2-18.rhaos4.17.el8?arch=noarch\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el9?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el8?arch=x86_64\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el9?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el8?arch=aarch64\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el9?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el8?arch=ppc64le\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el9?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_id": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.2.2-18.rhaos4.17.el8?arch=s390x\u0026epoch=5"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.src as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch"
},
"product_reference": "podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.src as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el9.src",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch"
},
"product_reference": "podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
},
"product_reference": "podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"relates_to_product_reference": "9Base-RHOSE-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pyasn1-0:0.5.1-4.el9.src as a component of Ironic content for Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src"
},
"product_reference": "python-pyasn1-0:0.5.1-4.el9.src",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pyasn1-doc-0:0.5.1-4.el9.noarch as a component of Ironic content for Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch"
},
"product_reference": "python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-pyasn1-0:0.5.1-4.el9.noarch as a component of Ironic content for Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch"
},
"product_reference": "python3-pyasn1-0:0.5.1-4.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.17"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch as a component of Ironic content for Red Hat OpenShift Container Platform 4.17",
"product_id": "9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
},
"product_reference": "python3-pyasn1-modules-0:0.5.1-4.el9.noarch",
"relates_to_product_reference": "9Base-RHOSE-IRONIC-4.17"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-58183",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2025-10-29T23:01:50.573951+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2407258"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/tar package in the Go standard library. tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A specially crafted tar archive with a pax header indicating a big number of sparse regions can cause a Go program to try to allocate a large amount of memory, causing an out-of-memory condition and resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs to be able to process a specially crafted GNU tar pax 1.0 archive with the application using the archive/tar package. Additionally, this issue can cause the Go application to allocate a large amount of memory, eventually leading to an out-of-memory condition and resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-58183"
},
{
"category": "external",
"summary": "RHBZ#2407258",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2407258"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-58183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58183"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-58183"
},
{
"category": "external",
"summary": "https://go.dev/cl/709861",
"url": "https://go.dev/cl/709861"
},
{
"category": "external",
"summary": "https://go.dev/issue/75677",
"url": "https://go.dev/issue/75677"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI",
"url": "https://groups.google.com/g/golang-announce/c/4Emdl2iQ_bI"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4014",
"url": "https://pkg.go.dev/vuln/GO-2025-4014"
}
],
"release_date": "2025-10-29T22:10:14.376000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T13:36:25+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/tar: Unbounded allocation when parsing GNU sparse map"
},
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T13:36:25+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T13:36:25+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T13:36:25+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"known_not_affected": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T13:36:25+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-23490",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-16T20:03:33.790513+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2430472"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in pyasn1, a generic ASN.1 library for Python. A remote attacker could exploit this vulnerability by sending a specially crafted RELATIVE-OID with excessive continuation octets. This input validation vulnerability leads to memory exhaustion, resulting in a Denial of Service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
],
"known_not_affected": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-23490"
},
{
"category": "external",
"summary": "RHBZ#2430472",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2430472"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-23490",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-23490"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-23490",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-23490"
},
{
"category": "external",
"summary": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970",
"url": "https://github.com/pyasn1/pyasn1/commit/3908f144229eed4df24bd569d16e5991ace44970"
},
{
"category": "external",
"summary": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2",
"url": "https://github.com/pyasn1/pyasn1/releases/tag/v0.6.2"
},
{
"category": "external",
"summary": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq",
"url": "https://github.com/pyasn1/pyasn1/security/advisories/GHSA-63vm-454h-vhhq"
}
],
"release_date": "2026-01-16T19:03:36.442000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-05-20T13:36:25+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/",
"product_ids": [
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:17595"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.src",
"8Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-catatonit-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el8.noarch",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-gvproxy-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el8.x86_64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.aarch64",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.ppc64le",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.s390x",
"8Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el8.x86_64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.src",
"9Base-RHOSE-4.17:podman-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-debugsource-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-docker-5:5.2.2-18.rhaos4.17.el9.noarch",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-plugins-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-remote-debuginfo-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.aarch64",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.ppc64le",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.s390x",
"9Base-RHOSE-4.17:podman-tests-5:5.2.2-18.rhaos4.17.el9.x86_64",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-0:0.5.1-4.el9.src",
"9Base-RHOSE-IRONIC-4.17:python-pyasn1-doc-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-0:0.5.1-4.el9.noarch",
"9Base-RHOSE-IRONIC-4.17:python3-pyasn1-modules-0:0.5.1-4.el9.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "pyasn1: pyasn1: Denial of Service due to memory exhaustion from malformed RELATIVE-OID"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.